NTB se občas seká

Zpráva

marpie · #1 Příspěvek od **marpie** » 24 kvě 2015 11:45

Mám teď doma notebook od známého. Prý se notebook občas seká ale nic bližšího nevím. Prosím o kontrolu logu.

Logfile of random's system information tool 1.10 (written by random/random)
Run by marianek at 2015-05-24 12:32:09
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 346 GB (48%) free of 715 GB
Total RAM: 4030 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:32:27, on 24.5.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrvPXDiscrete.exe
C:\Program Files\trend micro\marianek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SnapMyScreen] C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe /hidden
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 10056 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
C:\Windows\System32\spoolsv.exe
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe" /hidden
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
ngservice.exe pipeserver
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe" -h
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrvPXDiscrete.exe" -h
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\system32\msiexec.exe /V
taskeng.exe {1F5F91D0-C0AD-43AB-B985-099A54A354FD}
"C:\Users\marianek\Downloads\RSITx64.exe"
"C:\Users\marianek\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-460132011-426515808-2301705132-1000Core.job - C:\Users\marianek\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-460132011-426515808-2301705132-1000UA.job - C:\Users\marianek\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\components\
flashplayer.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np32dsw.dll
nppdf32.dll
ShockwavePlugin.class

C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\extensions\
synchronize@nokia.suite
toolbar@centrumholdings.com
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\searchplugins\
ask-web-search.xml
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-25 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-24 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-25 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-24 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-06 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-06 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-09-08 1424896]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-31 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-31 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-31 416024]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30 2804976]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\marianek\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\marianek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\marianek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-17 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NUSB3MON]
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\385C9A~1.150\SSSCHE~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-13 343168]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-13 5515496]
"SnapMyScreen"=C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe [2014-07-31 320352]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-31 390144]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-05-24 12:32:09 ----D---- C:\rsit
2015-05-24 12:32:09 ----D---- C:\Program Files\trend micro
2015-05-23 02:31:01 ----D---- C:\ProgramData\Ubisoft
2015-05-21 10:46:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-05-18 15:54:46 ----D---- C:\Users\marianek\AppData\Roaming\12560
2015-05-13 22:52:05 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 22:52:05 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 21:48:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-13 21:48:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-13 21:48:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-13 21:48:49 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-13 21:48:49 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-13 21:48:49 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-13 21:48:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-13 21:48:48 ----A---- C:\Windows\system32\iernonce.dll
2015-05-13 21:48:48 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-13 21:48:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 21:48:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-13 21:48:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-13 21:48:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-13 21:48:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\urlmon.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-13 21:48:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 21:48:43 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-13 21:48:43 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-13 21:48:42 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-13 21:48:42 ----A---- C:\Windows\system32\iesetup.dll
2015-05-13 21:48:42 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-13 21:48:41 ----A---- C:\Windows\system32\iertutil.dll
2015-05-13 21:48:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-13 21:48:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-13 21:48:40 ----A---- C:\Windows\system32\vbscript.dll
2015-05-13 21:48:39 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-13 21:48:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-13 21:48:39 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-13 21:48:39 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-13 21:48:38 ----A---- C:\Windows\system32\ieui.dll
2015-05-13 21:48:38 ----A---- C:\Windows\system32\ieframe.dll
2015-05-13 21:48:38 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-13 21:48:37 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-13 21:48:37 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\wininet.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript9.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript.dll
2015-05-13 21:48:35 ----A---- C:\Windows\system32\msrating.dll
2015-05-13 21:48:35 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-13 21:48:34 ----A---- C:\Windows\system32\mshtml.dll
2015-05-13 21:47:47 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-05-13 21:47:47 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-05-13 21:47:47 ----A---- C:\Windows\system32\schannel.dll
2015-05-13 21:47:47 ----A---- C:\Windows\system32\certcli.dll
2015-05-13 21:46:31 ----A---- C:\Windows\system32\FntCache.dll
2015-05-13 21:46:30 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-05-13 21:46:30 ----A---- C:\Windows\system32\win32k.sys
2015-05-13 21:46:30 ----A---- C:\Windows\system32\DWrite.dll
2015-05-13 21:46:23 ----A---- C:\Windows\system32\services.exe
2015-05-13 21:45:05 ----A---- C:\Windows\system32\UtcResources.dll
2015-05-13 21:45:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-05-13 21:45:04 ----A---- C:\Windows\system32\diagtrack.dll
2015-05-13 21:45:03 ----A---- C:\Windows\system32\ntdll.dll
2015-05-13 21:45:02 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-05-13 21:45:02 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-05-13 21:45:01 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-13 21:45:01 ----A---- C:\Windows\system32\tdh.dll
2015-05-13 21:45:00 ----A---- C:\Windows\system32\advapi32.dll
2015-05-13 21:44:59 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-05-13 21:44:59 ----A---- C:\Windows\system32\kernel32.dll
2015-05-13 21:44:58 ----A---- C:\Windows\system32\msv1_0.dll
2015-05-13 21:44:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-05-13 21:44:57 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\wow64.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\lsasrv.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\KernelBase.dll
2015-05-13 21:44:56 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-05-13 21:44:56 ----A---- C:\Windows\system32\tracerpt.exe
2015-05-13 21:44:56 ----A---- C:\Windows\system32\sechost.dll
2015-05-13 21:44:56 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-05-13 21:44:55 ----A---- C:\Windows\system32\logman.exe
2015-05-13 21:44:55 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-05-13 21:44:54 ----A---- C:\Windows\system32\srcore.dll
2015-05-13 21:44:53 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-05-13 21:44:53 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-05-13 21:44:53 ----A---- C:\Windows\system32\winsrv.dll
2015-05-13 21:44:53 ----A---- C:\Windows\system32\conhost.exe
2015-05-13 21:44:52 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-05-13 21:44:52 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\smss.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\rstrui.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\kerberos.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-05-13 21:44:51 ----A---- C:\Windows\system32\wdigest.dll
2015-05-13 21:44:51 ----A---- C:\Windows\system32\typeperf.exe
2015-05-13 21:44:51 ----A---- C:\Windows\system32\ncrypt.dll
2015-05-13 21:44:50 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-05-13 21:44:50 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-05-13 21:44:50 ----A---- C:\Windows\system32\TSpkg.dll
2015-05-13 21:44:50 ----A---- C:\Windows\system32\sspicli.dll
2015-05-13 21:44:50 ----A---- C:\Windows\system32\relog.exe
2015-05-13 21:44:50 ----A---- C:\Windows\system32\lsass.exe
2015-05-13 21:44:49 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-05-13 21:44:49 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-05-13 21:44:49 ----A---- C:\Windows\system32\csrsrv.dll
2015-05-13 21:44:49 ----A---- C:\Windows\system32\auditpol.exe
2015-05-13 21:44:48 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-05-13 21:44:48 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-05-13 21:44:48 ----A---- C:\Windows\system32\srclient.dll
2015-05-13 21:44:48 ----A---- C:\Windows\system32\diskperf.exe
2015-05-13 21:44:47 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-05-13 21:44:47 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\wow64win.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\sspisrv.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\secur32.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\ntvdm64.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-05-13 21:44:46 ----A---- C:\Windows\system32\wow64cpu.dll
2015-05-13 21:44:46 ----A---- C:\Windows\system32\credssp.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 21:44:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-05-13 21:44:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 21:44:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\user.exe
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\system32\apisetschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\system32\adtschema.dll
2015-05-13 21:44:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-05-13 21:44:36 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-05-13 21:44:36 ----A---- C:\Windows\system32\msobjs.dll
2015-05-13 21:44:36 ----A---- C:\Windows\system32\msaudite.dll
2015-05-13 21:43:25 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-05-13 21:43:25 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-05-13 21:43:25 ----A---- C:\Windows\system32\sdbinst.exe
2015-05-13 21:43:25 ----A---- C:\Windows\system32\apphelp.dll
2015-05-13 21:43:25 ----A---- C:\Windows\system32\aelupsvc.dll
2015-05-13 21:43:24 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-05-13 21:43:24 ----A---- C:\Windows\system32\shimeng.dll
2015-05-13 21:43:15 ----A---- C:\Windows\system32\InkEd.dll
2015-05-13 21:43:14 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-05-13 21:42:40 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-05-13 21:42:40 ----A---- C:\Windows\system32\wpdshext.dll
2015-05-13 21:42:27 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-05-13 21:42:27 ----A---- C:\Windows\system32\poqexec.exe
2015-04-30 09:53:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-30 09:53:40 ----SD---- C:\Windows\system32\GWX
2015-04-30 09:53:36 ----D---- C:\Windows\system32\appraiser
2015-04-30 05:27:52 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-04-30 05:27:52 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-04-29 05:12:15 ----A---- C:\Windows\system32\pku2u.dll
2015-04-29 05:12:14 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-04-29 04:57:21 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-04-29 04:57:21 ----A---- C:\Windows\system32\msi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\wdi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\powertracker.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\perftrack.dll
2015-04-28 14:10:54 ----D---- C:\4a8c8e1bbe82ca81fb7c13
2015-04-25 12:16:47 ----D---- C:\Users\marianek\AppData\Roaming\DVDFab9
2015-04-25 12:15:47 ----D---- C:\Program Files (x86)\DVDFab 9
2015-04-25 11:57:52 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-04-25 11:57:52 ----A---- C:\Windows\system32\drmv2clt.dll
2015-04-25 11:57:52 ----A---- C:\Windows\system32\blackbox.dll
2015-04-25 11:57:51 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-04-25 11:57:49 ----A---- C:\Windows\system32\wmp.dll
2015-04-25 11:57:47 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-04-25 11:57:47 ----A---- C:\Windows\system32\mf.dll
2015-04-25 11:57:46 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-04-25 11:57:46 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-04-25 11:57:46 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-04-25 11:57:45 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-04-25 11:57:44 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-04-25 11:57:43 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-04-25 11:57:43 ----A---- C:\Windows\system32\crypt32.dll
2015-04-25 11:57:42 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-04-25 11:57:42 ----A---- C:\Windows\system32\ci.dll
2015-04-25 11:57:41 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-04-25 11:57:40 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-04-25 11:57:40 ----A---- C:\Windows\system32\cryptsvc.dll
2015-04-25 11:57:39 ----A---- C:\Windows\system32\winresume.exe
2015-04-25 11:57:39 ----A---- C:\Windows\system32\winload.exe
2015-04-25 11:57:39 ----A---- C:\Windows\system32\quartz.dll
2015-04-25 11:57:38 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\wintrust.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\evr.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\audiosrv.dll
2015-04-25 11:57:37 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-04-25 11:57:37 ----A---- C:\Windows\system32\cryptui.dll
2015-04-25 11:57:36 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-04-25 11:57:36 ----A---- C:\Windows\system32\qdvd.dll
2015-04-25 11:57:35 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-04-25 11:57:35 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-04-25 11:57:35 ----A---- C:\Windows\system32\mfplat.dll
2015-04-25 11:57:35 ----A---- C:\Windows\system32\AudioEng.dll
2015-04-25 11:57:34 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-04-25 11:57:34 ----A---- C:\Windows\system32\pcasvc.dll
2015-04-25 11:57:33 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-04-25 11:57:33 ----A---- C:\Windows\system32\EncDump.dll
2015-04-25 11:57:33 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-04-25 11:57:33 ----A---- C:\Windows\system32\AudioSes.dll
2015-04-25 11:57:32 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-04-25 11:57:32 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-04-25 11:57:32 ----A---- C:\Windows\system32\cryptsp.dll
2015-04-25 11:57:31 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-04-25 11:57:31 ----A---- C:\Windows\system32\msscp.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\msnetobj.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\appidsvc.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\appidapi.dll
2015-04-25 11:57:27 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-04-25 11:57:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-04-25 11:57:27 ----A---- C:\Windows\system32\cryptnet.dll
2015-04-25 11:57:26 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-04-25 11:57:26 ----A---- C:\Windows\system32\drivers\appid.sys
2015-04-25 11:57:26 ----A---- C:\Windows\system32\audiodg.exe
2015-04-25 11:57:25 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-04-25 11:57:25 ----A---- C:\Windows\system32\rrinstaller.exe
2015-04-25 11:57:24 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-04-25 11:57:23 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-04-25 11:57:23 ----A---- C:\Windows\system32\pcadm.dll
2015-04-25 11:57:23 ----A---- C:\Windows\system32\mfps.dll
2015-04-25 11:57:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-04-25 11:57:21 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-04-25 11:57:21 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-04-25 11:57:21 ----A---- C:\Windows\system32\mfpmp.exe
2015-04-25 11:57:20 ----A---- C:\Windows\system32\pcawrk.exe
2015-04-25 11:57:20 ----A---- C:\Windows\system32\msmmsp.dll
2015-04-25 11:57:19 ----A---- C:\Windows\system32\pcalua.exe
2015-04-25 11:57:18 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-04-25 11:57:16 ----A---- C:\Windows\system32\spwmp.dll
2015-04-25 11:57:15 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-04-25 11:57:15 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-04-25 11:57:15 ----A---- C:\Windows\system32\pcaevts.dll
2015-04-25 11:57:15 ----A---- C:\Windows\system32\dxmasf.dll
2015-04-25 11:57:14 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-04-25 11:57:14 ----A---- C:\Windows\system32\mferror.dll
2015-04-25 11:57:13 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-04-25 11:57:13 ----A---- C:\Windows\system32\wmploc.DLL
2015-04-25 11:40:06 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-04-25 11:40:06 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\lpk.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\atmlib.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\atmfd.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-04-25 11:40:05 ----A---- C:\Windows\system32\fontsub.dll
2015-04-25 11:40:05 ----A---- C:\Windows\system32\dciman32.dll
2015-04-25 11:34:00 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-04-25 11:34:00 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-04-25 11:26:49 ----A---- C:\Windows\system32\profsvc.dll
2015-04-25 11:22:42 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-04-25 11:22:42 ----A---- C:\Windows\system32\mscorier.dll
2015-04-25 11:22:41 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-04-25 11:22:41 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-04-25 11:22:41 ----A---- C:\Windows\system32\mscories.dll
2015-04-25 11:22:41 ----A---- C:\Windows\system32\dfshim.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\rdpudd.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\rdpcorets.dll
2015-04-25 11:16:00 ----A---- C:\Windows\system32\termsrv.dll
2015-04-25 11:15:46 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-04-25 11:15:46 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-04-25 11:15:46 ----A---- C:\Windows\system32\nlasvc.dll
2015-04-25 11:15:44 ----A---- C:\Windows\system32\d3d10warp.dll
2015-04-25 11:15:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-25 11:15:25 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-25 11:15:25 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wups2.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wups.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wudriver.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wucltux.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuapp.exe
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuapi.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-25 11:14:55 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-04-25 11:14:52 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-04-25 11:14:52 ----A---- C:\Windows\system32\ubpm.dll
2015-04-25 11:14:49 ----A---- C:\Windows\system32\shell32.dll
2015-04-25 11:14:48 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-04-25 11:14:36 ----A---- C:\Windows\system32\aitstatic.exe
2015-04-25 11:14:35 ----A---- C:\Windows\system32\invagent.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\generaltel.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\devinv.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\appraiser.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\aepic.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\aeinv.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\acmigration.dll
2015-04-25 11:14:32 ----A---- C:\Windows\system32\aepdu.dll
2015-04-25 11:11:44 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-04-25 11:11:42 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-25 11:11:42 ----A---- C:\Windows\system32\gdi32.dll
2015-04-25 11:06:21 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-25 11:06:21 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-25 11:06:21 ----A---- C:\Windows\system32\msxml3.dll
2015-04-25 11:06:20 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-25 11:06:17 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-04-25 11:06:17 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-04-25 11:05:55 ----A---- C:\Windows\system32\drivers\cng.sys
2015-04-25 11:05:13 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-04-25 11:05:11 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-04-25 11:05:11 ----A---- C:\Windows\system32\oleaut32.dll
2015-04-25 11:05:09 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-25 11:03:37 ----A---- C:\Windows\SYSWOW64\charmap.exe
2015-04-25 11:03:37 ----A---- C:\Windows\system32\charmap.exe
2015-04-25 11:03:34 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-04-25 11:03:34 ----A---- C:\Windows\system32\msctf.dll
2015-04-25 11:02:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-04-25 11:02:44 ----A---- C:\Windows\system32\rastls.dll
2015-04-25 11:02:42 ----A---- C:\Windows\system32\WsmSvc.dll
2015-04-25 11:02:41 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2015-04-25 11:02:40 ----A---- C:\Windows\system32\WsmAuto.dll
2015-04-25 10:58:42 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-04-25 10:58:42 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-04-25 10:58:02 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-04-25 10:58:02 ----A---- C:\Windows\system32\tzres.dll
2015-04-25 10:57:23 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-04-25 10:57:23 ----A---- C:\Windows\system32\packager.dll
2015-04-25 10:57:07 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\winsta.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-04-25 10:57:06 ----A---- C:\Windows\system32\winlogon.exe
2015-04-25 10:57:04 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-04-25 10:55:10 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-04-25 10:55:10 ----A---- C:\Windows\system32\scesrv.dll
2015-04-25 10:55:03 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-04-25 10:55:03 ----A---- C:\Windows\system32\mstscax.dll
2015-04-25 10:55:00 ----A---- C:\Windows\system32\clfsw32.dll
2015-04-25 10:55:00 ----A---- C:\Windows\system32\clfs.sys
2015-04-25 10:54:59 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-04-25 10:53:18 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-04-25 10:53:18 ----A---- C:\Windows\system32\WMPhoto.dll
2015-04-25 08:40:32 ----A---- C:\Windows\system32\aswBoot.exe
2015-04-25 08:40:27 ----A---- C:\Windows\avastSS.scr

======List of files/folders modified in the last 1 month======

2015-05-24 12:32:12 ----D---- C:\Windows\Temp
2015-05-24 12:32:09 ----D---- C:\Program Files
2015-05-24 12:26:59 ----D---- C:\Windows\SysWOW64
2015-05-24 12:26:59 ----D---- C:\ProgramData\Oracle
2015-05-24 12:26:11 ----SHD---- C:\Windows\Installer
2015-05-24 12:26:11 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 12:25:20 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-05-24 12:25:08 ----D---- C:\Program Files (x86)\Java
2015-05-24 12:20:58 ----D---- C:\Windows\inf
2015-05-24 12:20:58 ----D---- C:\Windows
2015-05-24 12:16:18 ----D---- C:\Program Files\CCleaner
2015-05-24 12:07:21 ----A---- C:\Windows\SYSWOW64\log.txt
2015-05-24 12:05:40 ----D---- C:\Windows\system32\config
2015-05-24 12:04:30 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-23 04:08:16 ----D---- C:\Windows\System32
2015-05-23 04:08:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-05-23 02:31:01 ----HD---- C:\ProgramData
2015-05-23 02:30:02 ----D---- C:\Games
2015-05-22 23:02:24 ----D---- C:\Windows\system32\NDF
2015-05-22 03:00:30 ----D---- C:\Windows\winsxs
2015-05-22 02:32:08 ----D---- C:\Users\marianek\AppData\Roaming\DAEMON Tools Lite
2015-05-22 02:31:52 ----D---- C:\Program Files (x86)\Steam
2015-05-22 02:31:50 ----D---- C:\Users\marianek\AppData\Roaming\uTorrent
2015-05-22 02:28:06 ----D---- C:\Windows\Logs
2015-05-22 02:28:06 ----D---- C:\Windows\debug
2015-05-22 00:31:30 ----D---- C:\Users\marianek\AppData\Roaming\vlc
2015-05-21 23:53:39 ----RD---- C:\Program Files (x86)
2015-05-20 21:42:18 ----D---- C:\Windows\Prefetch
2015-05-18 13:12:04 ----D---- C:\Windows\Tasks
2015-05-17 17:11:39 ----A---- C:\AILog.txt
2015-05-14 17:15:38 ----D---- C:\Windows\Microsoft.NET
2015-05-14 17:14:53 ----RSD---- C:\Windows\assembly
2015-05-14 16:51:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-05-14 16:51:32 ----D---- C:\Windows\system32\cs-CZ
2015-05-14 16:51:29 ----D---- C:\Program Files\Internet Explorer
2015-05-14 16:51:23 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-14 16:51:14 ----D---- C:\Windows\system32\en-US
2015-05-14 16:51:03 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-14 16:50:17 ----D---- C:\Windows\AppPatch
2015-05-14 16:50:14 ----D---- C:\Windows\system32\drivers
2015-05-14 16:50:08 ----D---- C:\Windows\system32\AdvancedInstallers
2015-05-14 16:49:49 ----D---- C:\Windows\system32\DriverStore
2015-05-14 16:49:48 ----D---- C:\Windows\system32\drivers\UMDF
2015-05-14 16:48:51 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-14 16:48:50 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-13 22:56:07 ----D---- C:\Windows\system32\MRT
2015-05-13 22:56:02 ----A---- C:\Windows\system32\MRT.exe
2015-05-13 21:42:06 ----D---- C:\Windows\system32\catroot2
2015-04-30 09:54:16 ----D---- C:\Windows\SYSWOW64\Dism
2015-04-30 09:54:16 ----D---- C:\Program Files\Windows Media Player
2015-04-30 09:54:16 ----D---- C:\Program Files (x86)\Windows Media Player
2015-04-30 09:54:11 ----D---- C:\Windows\system32\Dism
2015-04-30 09:54:03 ----D---- C:\Windows\system32\Boot
2015-04-30 09:54:02 ----D---- C:\Windows\system32\CodeIntegrity
2015-04-30 09:53:45 ----D---- C:\Windows\PolicyDefinitions
2015-04-30 09:53:42 ----D---- C:\Windows\tracing
2015-04-30 09:53:39 ----D---- C:\Windows\AppCompat
2015-04-30 09:53:38 ----SD---- C:\Windows\system32\CompatTel
2015-04-30 09:53:36 ----D---- C:\Windows\system32\wbem
2015-04-30 09:53:35 ----SD---- C:\ProgramData\Microsoft
2015-04-30 06:13:49 ----D---- C:\Windows\system32\catroot
2015-04-30 06:00:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-29 06:31:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-25 08:45:42 ----SHD---- C:\System Volume Information
2015-04-25 08:40:39 ----D---- C:\Windows\system32\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-25 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-25 272248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-25 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-25 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-04-25 442264]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-04-02 283064]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-02-12 249000]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-02-12 99496]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-02-12 42152]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-02-12 93352]
R1 iSafeNetFilter;YAC NDIS Driver; C:\Windows\system32\DRIVERS\iSafeNetFilter.sys [2015-02-02 52392]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-25 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-25 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-25 137288]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-04-25 273824]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-10-14 10496000]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-14 326656]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-06-20 3678720]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-06 28832]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-02 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-07-01 342528]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-31 12306848]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-04-12 708200]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2012-11-28 1866080]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2011-09-08 535040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2014-08-07 44640]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-06 279200]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-31 12306848]
S3 iSafeKrnlBoot;YAC Boot Driver; C:\Windows\system32\DRIVERS\iSafeKrnlBoot.sys [2015-02-12 45224]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SMUpdd;Search Module UpdateD; \??\C:\Program Files\Common Files\Goobzo\GBUpdate\smw.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-10-14 204288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-25 343336]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-11 92216]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-02-12 120128]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-09-08 305152]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-25 4034896]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2011-01-11 788536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-21 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-29 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-08-09 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-21 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-04-21 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-05-21 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-11-08 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 24 kvě 2015 11:57

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

marpie · #3 Příspěvek od **marpie** » 24 kvě 2015 13:49

# AdwCleaner v4.205 - Log vytvořen 24/05/2015 v 14:37:42
# Aktualizováno 21/05/2015 by Xplode
# Databáze : 2015-05-21.2 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : marianek - MARIANEK-PC
# Spuštěno z : C:\Users\marianek\Downloads\adwcleaner_4.205.exe
# Nastavení : Čištění

***** [ Služby ] *****

Služba Smazáno : iSafeKrnl
[#] Služba Smazáno : iSafeKrnlBoot
Služba Smazáno : iSafeKrnlKit
Služba Smazáno : iSafeKrnlMon
Služba Smazáno : iSafeKrnlR3
Služba Smazáno : iSafeNetFilter
[#] Služba Smazáno : iSafeService
[#] Služba Smazáno : SMUpdd

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\SearchModule
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YAC
[!] Složka Smazáno : C:\Program Files (x86)\Elex-tech
Složka Smazáno : C:\Program Files\Babylon
Složka Smazáno : C:\Program Files\Common Files\Goobzo
Složka Smazáno : C:\Users\marianek\AppData\Roaming\eCyber
[!] Složka Smazáno : C:\Users\marianek\AppData\Roaming\Elex-tech
Složka Smazáno : C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Soubor Smazáno : C:\Users\Public\Desktop\YAC.lnk
Soubor Smazáno : C:\Windows\System32\log\iSafeKrnlCall.log
Soubor Smazáno : C:\Windows\System32\drivers\iSafeKrnlBoot.sys
Soubor Smazáno : C:\Windows\System32\drivers\iSafeNetFilter.sys
Soubor Smazáno : C:\Users\marianek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\YAC.lnk
Soubor Smazáno : C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\searchplugins\ask-web-search.xml

***** [ Naplánované úlohy ] *****

***** [ Zástupci ] *****

***** [ Registry ] *****

Hodnota Smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ocr@babylon.com]
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{928FE5E7-D557-46B7-8AF6-17ACCE1FB4ED}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Klíč Smazáno : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{7F4EFF06-7032-458E-AE16-1C1D8255C28A}
Klíč Smazáno : HKLM\SOFTWARE\Trymedia Systems
Klíč Smazáno : HKLM\SOFTWARE\Elex-tech
Klíč Smazáno : HKU\.DEFAULT\Software\Goobzo
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe
Klíč Smazáno : [x64] HKLM\SOFTWARE\SearchModule

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17801

-\\ Mozilla Firefox v38.0.1 (x86 cs)

[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.prev", "Google");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.savedPrev", "true");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.tb", "Ask Web Search");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.prev", "Google");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.savedPrev", "true");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.tb", "Ask Web Search");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.savedPrev", "true");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.tb", "hxxp://home.tb.ask.com/index.jhtml?ptb=0621046D-D5F3-4E7F-BF21-388A6136EFBD&n=781ac8fb&p2=^HJ^xdm007^YYA^cz&si=CI2Dwt[...]
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.page.savedPrev", 1);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.page.tb", 1);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.version.last", "35.0");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.firstKnownVersion", "6.85.5.65044");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=0621046D-D5F3-4E7F-BF21-388A6136EFBD&n=781ac8fb&p2=^HJ^xdm007^YYA^cz&si=CI2DwtnM38MCFWLLtAodPlYA8[...]
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.guardType", "HPR");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.user.defined", false);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installKeysSource", "Cookies");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installType", "XPI");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", "");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2015021307");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm007^YYA^cz");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "CI2DwtnM38MCFWLLtAodPlYA8Q");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.pixelUrl", "hxxp://free.videodownloadconverter.com/install_pixels.jhtml?partner=^HJ^xdm007^YYA^cz&coId=63c851059e3b4e3d939444123d62d270[...]
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "0621046D-D5F3-4E7F-BF21-388A6136EFBD");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.isCompliantUninstallImplementation", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.lastActivePing", "1423912662092");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.lastKnownVersion", "6.85.5.65044");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.partnerPixelFired", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.successUrl", "hxxp://free.videodownloadconverter.com/installComplete.jhtml");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.toolbar.ownSearch", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.toolbarCollapsed", false);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._4zMembers_.weather.location", "10001");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._8lMembers_.hp.guardType", "HPR");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._8lMembers_.lastActivePing", "1425662784623");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._8lMembers_.weather.location", "10001");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._9tMembers_.toolbarCollapsed", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark._bfMembers_.toolbarCollapsed", true);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark.hp.enabled", false);
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "");
[kfsrbsq4.default\prefs.js] - Řádek Smazáno : user_pref("extensions.toolbar.mindspark.lastInstalled", "internetspeedtracker@mindspark.com");

-\\ Google Chrome v43.0.2357.65

[C:\Users\marianek\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www-search.net/search.aspx?s=%sbdate%zadc145014_0_1_tmpue3_34831910641382217273,167f84a7-df4b-4e0d-a7d6-a631f0a41fbe,&q={searchTerms}
[C:\Users\marianek\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://www-search.net/search.aspx?s=%sbdate%zadc145014_0_1_tmpue3_34831910641382217273,167f84a7-df4b-4e0d-a7d6-a631f0a41fbe,&q={searchTerms}
[C:\Users\marianek\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Homepage] : hxxp://www-search.net/?s=%sbdate%zadc145014_0_1_tmpue3_34831910641382217273,167f84a7-df4b-4e0d-a7d6-a631f0a41fbe,

-\\ Chromium v

*************************

AdwCleaner[R0].txt - [10718 bytů] - [24/05/2015 14:14:44]
AdwCleaner[R1].txt - [10777 bytů] - [24/05/2015 14:21:04]
AdwCleaner[S0].txt - [10774 bytů] - [24/05/2015 14:37:42]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10833 bytů] ##########

#4 Příspěvek od **Rudy** » 24 kvě 2015 16:28

Dejte nový log RSIT.

marpie · #5 Příspěvek od **marpie** » 24 kvě 2015 16:52

Logfile of random's system information tool 1.10 (written by random/random)
Run by marianek at 2015-05-24 17:50:52
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 344 GB (48%) free of 715 GB
Total RAM: 4030 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:50:55, on 24.5.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\marianek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SnapMyScreen] C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe /hidden
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 10113 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe" /hidden
"C:\Windows\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[S0].txt
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
ngservice.exe pipeserver
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4024 CREDAT:275457 /prefetch:2
"C:\Windows\System32\MsSpellCheckingFacility.exe" -Embedding
"C:\Users\marianek\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-460132011-426515808-2301705132-1000Core.job - C:\Users\marianek\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-460132011-426515808-2301705132-1000UA.job - C:\Users\marianek\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\components\
flashplayer.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np32dsw.dll
nppdf32.dll
ShockwavePlugin.class

C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\extensions\
synchronize@nokia.suite
toolbar@centrumholdings.com

C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\searchplugins\
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-25 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-24 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-25 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-24 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-06 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-06 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-09-08 1424896]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-31 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-31 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-31 416024]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30 2804976]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\marianek\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\marianek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\marianek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-17 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NUSB3MON]
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\385C9A~1.150\SSSCHE~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-13 343168]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-13 5515496]
"SnapMyScreen"=C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe [2014-07-31 320352]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-31 390144]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-05-24 14:40:27 ----A---- C:\Windows\system32\drivers\iSafeNetFilter.sys
2015-05-24 14:40:17 ----D---- C:\Users\marianek\AppData\Roaming\Elex-tech
2015-05-24 14:14:39 ----D---- C:\AdwCleaner
2015-05-24 12:32:09 ----D---- C:\rsit
2015-05-24 12:32:09 ----D---- C:\Program Files\trend micro
2015-05-23 02:31:01 ----D---- C:\ProgramData\Ubisoft
2015-05-21 10:46:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-05-18 15:54:46 ----D---- C:\Users\marianek\AppData\Roaming\12560
2015-05-13 22:52:05 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 22:52:05 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 21:48:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-13 21:48:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-13 21:48:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-13 21:48:49 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-13 21:48:49 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-13 21:48:49 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-13 21:48:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-13 21:48:48 ----A---- C:\Windows\system32\iernonce.dll
2015-05-13 21:48:48 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-13 21:48:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 21:48:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-13 21:48:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-13 21:48:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-13 21:48:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\urlmon.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-13 21:48:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 21:48:43 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-13 21:48:43 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-13 21:48:42 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-13 21:48:42 ----A---- C:\Windows\system32\iesetup.dll
2015-05-13 21:48:42 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-13 21:48:41 ----A---- C:\Windows\system32\iertutil.dll
2015-05-13 21:48:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-13 21:48:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-13 21:48:40 ----A---- C:\Windows\system32\vbscript.dll
2015-05-13 21:48:39 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-13 21:48:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-13 21:48:39 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-13 21:48:39 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-13 21:48:38 ----A---- C:\Windows\system32\ieui.dll
2015-05-13 21:48:38 ----A---- C:\Windows\system32\ieframe.dll
2015-05-13 21:48:38 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-13 21:48:37 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-13 21:48:37 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\wininet.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript9.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript.dll
2015-05-13 21:48:35 ----A---- C:\Windows\system32\msrating.dll
2015-05-13 21:48:35 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-13 21:48:34 ----A---- C:\Windows\system32\mshtml.dll
2015-05-13 21:47:47 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-05-13 21:47:47 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-05-13 21:47:47 ----A---- C:\Windows\system32\schannel.dll
2015-05-13 21:47:47 ----A---- C:\Windows\system32\certcli.dll
2015-05-13 21:46:31 ----A---- C:\Windows\system32\FntCache.dll
2015-05-13 21:46:30 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-05-13 21:46:30 ----A---- C:\Windows\system32\win32k.sys
2015-05-13 21:46:30 ----A---- C:\Windows\system32\DWrite.dll
2015-05-13 21:46:23 ----A---- C:\Windows\system32\services.exe
2015-05-13 21:45:05 ----A---- C:\Windows\system32\UtcResources.dll
2015-05-13 21:45:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-05-13 21:45:04 ----A---- C:\Windows\system32\diagtrack.dll
2015-05-13 21:45:03 ----A---- C:\Windows\system32\ntdll.dll
2015-05-13 21:45:02 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-05-13 21:45:02 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-05-13 21:45:01 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-13 21:45:01 ----A---- C:\Windows\system32\tdh.dll
2015-05-13 21:45:00 ----A---- C:\Windows\system32\advapi32.dll
2015-05-13 21:44:59 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-05-13 21:44:59 ----A---- C:\Windows\system32\kernel32.dll
2015-05-13 21:44:58 ----A---- C:\Windows\system32\msv1_0.dll
2015-05-13 21:44:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-05-13 21:44:57 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\wow64.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\lsasrv.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\KernelBase.dll
2015-05-13 21:44:56 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-05-13 21:44:56 ----A---- C:\Windows\system32\tracerpt.exe
2015-05-13 21:44:56 ----A---- C:\Windows\system32\sechost.dll
2015-05-13 21:44:56 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-05-13 21:44:55 ----A---- C:\Windows\system32\logman.exe
2015-05-13 21:44:55 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-05-13 21:44:54 ----A---- C:\Windows\system32\srcore.dll
2015-05-13 21:44:53 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-05-13 21:44:53 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-05-13 21:44:53 ----A---- C:\Windows\system32\winsrv.dll
2015-05-13 21:44:53 ----A---- C:\Windows\system32\conhost.exe
2015-05-13 21:44:52 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-05-13 21:44:52 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\smss.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\rstrui.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\kerberos.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-05-13 21:44:51 ----A---- C:\Windows\system32\wdigest.dll
2015-05-13 21:44:51 ----A---- C:\Windows\system32\typeperf.exe
2015-05-13 21:44:51 ----A---- C:\Windows\system32\ncrypt.dll
2015-05-13 21:44:50 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-05-13 21:44:50 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-05-13 21:44:50 ----A---- C:\Windows\system32\TSpkg.dll
2015-05-13 21:44:50 ----A---- C:\Windows\system32\sspicli.dll
2015-05-13 21:44:50 ----A---- C:\Windows\system32\relog.exe
2015-05-13 21:44:50 ----A---- C:\Windows\system32\lsass.exe
2015-05-13 21:44:49 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-05-13 21:44:49 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-05-13 21:44:49 ----A---- C:\Windows\system32\csrsrv.dll
2015-05-13 21:44:49 ----A---- C:\Windows\system32\auditpol.exe
2015-05-13 21:44:48 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-05-13 21:44:48 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-05-13 21:44:48 ----A---- C:\Windows\system32\srclient.dll
2015-05-13 21:44:48 ----A---- C:\Windows\system32\diskperf.exe
2015-05-13 21:44:47 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-05-13 21:44:47 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\wow64win.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\sspisrv.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\secur32.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\ntvdm64.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-05-13 21:44:46 ----A---- C:\Windows\system32\wow64cpu.dll
2015-05-13 21:44:46 ----A---- C:\Windows\system32\credssp.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 21:44:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-05-13 21:44:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 21:44:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\user.exe
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\system32\apisetschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\system32\adtschema.dll
2015-05-13 21:44:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-05-13 21:44:36 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-05-13 21:44:36 ----A---- C:\Windows\system32\msobjs.dll
2015-05-13 21:44:36 ----A---- C:\Windows\system32\msaudite.dll
2015-05-13 21:43:25 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-05-13 21:43:25 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-05-13 21:43:25 ----A---- C:\Windows\system32\sdbinst.exe
2015-05-13 21:43:25 ----A---- C:\Windows\system32\apphelp.dll
2015-05-13 21:43:25 ----A---- C:\Windows\system32\aelupsvc.dll
2015-05-13 21:43:24 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-05-13 21:43:24 ----A---- C:\Windows\system32\shimeng.dll
2015-05-13 21:43:15 ----A---- C:\Windows\system32\InkEd.dll
2015-05-13 21:43:14 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-05-13 21:42:40 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-05-13 21:42:40 ----A---- C:\Windows\system32\wpdshext.dll
2015-05-13 21:42:27 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-05-13 21:42:27 ----A---- C:\Windows\system32\poqexec.exe
2015-04-30 09:53:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-30 09:53:40 ----SD---- C:\Windows\system32\GWX
2015-04-30 09:53:36 ----D---- C:\Windows\system32\appraiser
2015-04-30 05:27:52 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-04-30 05:27:52 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-04-29 05:12:15 ----A---- C:\Windows\system32\pku2u.dll
2015-04-29 05:12:14 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-04-29 04:57:21 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-04-29 04:57:21 ----A---- C:\Windows\system32\msi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\wdi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\powertracker.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\perftrack.dll
2015-04-28 14:10:54 ----D---- C:\4a8c8e1bbe82ca81fb7c13
2015-04-25 12:16:47 ----D---- C:\Users\marianek\AppData\Roaming\DVDFab9
2015-04-25 12:15:47 ----D---- C:\Program Files (x86)\DVDFab 9
2015-04-25 11:57:52 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-04-25 11:57:52 ----A---- C:\Windows\system32\drmv2clt.dll
2015-04-25 11:57:52 ----A---- C:\Windows\system32\blackbox.dll
2015-04-25 11:57:51 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-04-25 11:57:49 ----A---- C:\Windows\system32\wmp.dll
2015-04-25 11:57:47 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-04-25 11:57:47 ----A---- C:\Windows\system32\mf.dll
2015-04-25 11:57:46 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-04-25 11:57:46 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-04-25 11:57:46 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-04-25 11:57:45 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-04-25 11:57:44 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-04-25 11:57:43 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-04-25 11:57:43 ----A---- C:\Windows\system32\crypt32.dll
2015-04-25 11:57:42 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-04-25 11:57:42 ----A---- C:\Windows\system32\ci.dll
2015-04-25 11:57:41 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-04-25 11:57:40 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-04-25 11:57:40 ----A---- C:\Windows\system32\cryptsvc.dll
2015-04-25 11:57:39 ----A---- C:\Windows\system32\winresume.exe
2015-04-25 11:57:39 ----A---- C:\Windows\system32\winload.exe
2015-04-25 11:57:39 ----A---- C:\Windows\system32\quartz.dll
2015-04-25 11:57:38 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\wintrust.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\evr.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\audiosrv.dll
2015-04-25 11:57:37 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-04-25 11:57:37 ----A---- C:\Windows\system32\cryptui.dll
2015-04-25 11:57:36 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-04-25 11:57:36 ----A---- C:\Windows\system32\qdvd.dll
2015-04-25 11:57:35 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-04-25 11:57:35 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-04-25 11:57:35 ----A---- C:\Windows\system32\mfplat.dll
2015-04-25 11:57:35 ----A---- C:\Windows\system32\AudioEng.dll
2015-04-25 11:57:34 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-04-25 11:57:34 ----A---- C:\Windows\system32\pcasvc.dll
2015-04-25 11:57:33 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-04-25 11:57:33 ----A---- C:\Windows\system32\EncDump.dll
2015-04-25 11:57:33 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-04-25 11:57:33 ----A---- C:\Windows\system32\AudioSes.dll
2015-04-25 11:57:32 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-04-25 11:57:32 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-04-25 11:57:32 ----A---- C:\Windows\system32\cryptsp.dll
2015-04-25 11:57:31 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-04-25 11:57:31 ----A---- C:\Windows\system32\msscp.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\msnetobj.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\appidsvc.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\appidapi.dll
2015-04-25 11:57:27 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-04-25 11:57:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-04-25 11:57:27 ----A---- C:\Windows\system32\cryptnet.dll
2015-04-25 11:57:26 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-04-25 11:57:26 ----A---- C:\Windows\system32\drivers\appid.sys
2015-04-25 11:57:26 ----A---- C:\Windows\system32\audiodg.exe
2015-04-25 11:57:25 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-04-25 11:57:25 ----A---- C:\Windows\system32\rrinstaller.exe
2015-04-25 11:57:24 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-04-25 11:57:23 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-04-25 11:57:23 ----A---- C:\Windows\system32\pcadm.dll
2015-04-25 11:57:23 ----A---- C:\Windows\system32\mfps.dll
2015-04-25 11:57:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-04-25 11:57:21 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-04-25 11:57:21 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-04-25 11:57:21 ----A---- C:\Windows\system32\mfpmp.exe
2015-04-25 11:57:20 ----A---- C:\Windows\system32\pcawrk.exe
2015-04-25 11:57:20 ----A---- C:\Windows\system32\msmmsp.dll
2015-04-25 11:57:19 ----A---- C:\Windows\system32\pcalua.exe
2015-04-25 11:57:18 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-04-25 11:57:16 ----A---- C:\Windows\system32\spwmp.dll
2015-04-25 11:57:15 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-04-25 11:57:15 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-04-25 11:57:15 ----A---- C:\Windows\system32\pcaevts.dll
2015-04-25 11:57:15 ----A---- C:\Windows\system32\dxmasf.dll
2015-04-25 11:57:14 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-04-25 11:57:14 ----A---- C:\Windows\system32\mferror.dll
2015-04-25 11:57:13 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-04-25 11:57:13 ----A---- C:\Windows\system32\wmploc.DLL
2015-04-25 11:40:06 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-04-25 11:40:06 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\lpk.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\atmlib.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\atmfd.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-04-25 11:40:05 ----A---- C:\Windows\system32\fontsub.dll
2015-04-25 11:40:05 ----A---- C:\Windows\system32\dciman32.dll
2015-04-25 11:34:00 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-04-25 11:34:00 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-04-25 11:26:49 ----A---- C:\Windows\system32\profsvc.dll
2015-04-25 11:22:42 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-04-25 11:22:42 ----A---- C:\Windows\system32\mscorier.dll
2015-04-25 11:22:41 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-04-25 11:22:41 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-04-25 11:22:41 ----A---- C:\Windows\system32\mscories.dll
2015-04-25 11:22:41 ----A---- C:\Windows\system32\dfshim.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\rdpudd.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\rdpcorets.dll
2015-04-25 11:16:00 ----A---- C:\Windows\system32\termsrv.dll
2015-04-25 11:15:46 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-04-25 11:15:46 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-04-25 11:15:46 ----A---- C:\Windows\system32\nlasvc.dll
2015-04-25 11:15:44 ----A---- C:\Windows\system32\d3d10warp.dll
2015-04-25 11:15:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-25 11:15:25 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-25 11:15:25 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wups2.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wups.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wudriver.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wucltux.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuapp.exe
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuapi.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-25 11:14:55 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-04-25 11:14:52 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-04-25 11:14:52 ----A---- C:\Windows\system32\ubpm.dll
2015-04-25 11:14:49 ----A---- C:\Windows\system32\shell32.dll
2015-04-25 11:14:48 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-04-25 11:14:36 ----A---- C:\Windows\system32\aitstatic.exe
2015-04-25 11:14:35 ----A---- C:\Windows\system32\invagent.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\generaltel.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\devinv.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\appraiser.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\aepic.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\aeinv.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\acmigration.dll
2015-04-25 11:14:32 ----A---- C:\Windows\system32\aepdu.dll
2015-04-25 11:11:44 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-04-25 11:11:42 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-25 11:11:42 ----A---- C:\Windows\system32\gdi32.dll
2015-04-25 11:06:21 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-25 11:06:21 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-25 11:06:21 ----A---- C:\Windows\system32\msxml3.dll
2015-04-25 11:06:20 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-25 11:06:17 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-04-25 11:06:17 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-04-25 11:05:55 ----A---- C:\Windows\system32\drivers\cng.sys
2015-04-25 11:05:13 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-04-25 11:05:11 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-04-25 11:05:11 ----A---- C:\Windows\system32\oleaut32.dll
2015-04-25 11:05:09 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-25 11:03:37 ----A---- C:\Windows\SYSWOW64\charmap.exe
2015-04-25 11:03:37 ----A---- C:\Windows\system32\charmap.exe
2015-04-25 11:03:34 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-04-25 11:03:34 ----A---- C:\Windows\system32\msctf.dll
2015-04-25 11:02:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-04-25 11:02:44 ----A---- C:\Windows\system32\rastls.dll
2015-04-25 11:02:42 ----A---- C:\Windows\system32\WsmSvc.dll
2015-04-25 11:02:41 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2015-04-25 11:02:40 ----A---- C:\Windows\system32\WsmAuto.dll
2015-04-25 10:58:42 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-04-25 10:58:42 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-04-25 10:58:02 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-04-25 10:58:02 ----A---- C:\Windows\system32\tzres.dll
2015-04-25 10:57:23 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-04-25 10:57:23 ----A---- C:\Windows\system32\packager.dll
2015-04-25 10:57:07 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\winsta.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-04-25 10:57:06 ----A---- C:\Windows\system32\winlogon.exe
2015-04-25 10:57:04 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-04-25 10:55:10 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-04-25 10:55:10 ----A---- C:\Windows\system32\scesrv.dll
2015-04-25 10:55:03 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-04-25 10:55:03 ----A---- C:\Windows\system32\mstscax.dll
2015-04-25 10:55:00 ----A---- C:\Windows\system32\clfsw32.dll
2015-04-25 10:55:00 ----A---- C:\Windows\system32\clfs.sys
2015-04-25 10:54:59 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-04-25 10:53:18 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-04-25 10:53:18 ----A---- C:\Windows\system32\WMPhoto.dll
2015-04-25 08:40:32 ----A---- C:\Windows\system32\aswBoot.exe
2015-04-25 08:40:27 ----A---- C:\Windows\avastSS.scr

======List of files/folders modified in the last 1 month======

2015-05-24 17:50:55 ----D---- C:\Windows\Temp
2015-05-24 17:50:55 ----D---- C:\Windows\Prefetch
2015-05-24 14:42:35 ----A---- C:\Windows\SYSWOW64\log.txt
2015-05-24 14:41:00 ----D---- C:\Windows\system32\config
2015-05-24 14:40:27 ----D---- C:\Windows\system32\drivers
2015-05-24 14:40:12 ----D---- C:\Windows
2015-05-24 14:38:11 ----D---- C:\Windows\system32\log
2015-05-24 14:38:06 ----D---- C:\Program Files\Common Files
2015-05-24 14:38:06 ----D---- C:\Program Files
2015-05-24 14:37:43 ----HD---- C:\ProgramData
2015-05-24 12:51:39 ----SHD---- C:\Windows\Installer
2015-05-24 12:51:01 ----D---- C:\Windows\SysWOW64
2015-05-24 12:26:59 ----D---- C:\ProgramData\Oracle
2015-05-24 12:26:11 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 12:25:20 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-05-24 12:25:08 ----D---- C:\Program Files (x86)\Java
2015-05-24 12:20:58 ----D---- C:\Windows\inf
2015-05-24 12:16:18 ----D---- C:\Program Files\CCleaner
2015-05-24 12:04:30 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-23 04:08:16 ----D---- C:\Windows\System32
2015-05-23 04:08:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-05-23 02:30:02 ----D---- C:\Games
2015-05-22 23:02:42 ----D---- C:\Windows\system32\NDF
2015-05-22 03:00:30 ----D---- C:\Windows\winsxs
2015-05-22 02:32:08 ----D---- C:\Users\marianek\AppData\Roaming\DAEMON Tools Lite
2015-05-22 02:31:52 ----D---- C:\Program Files (x86)\Steam
2015-05-22 02:31:50 ----D---- C:\Users\marianek\AppData\Roaming\uTorrent
2015-05-22 02:28:06 ----D---- C:\Windows\Logs
2015-05-22 02:28:06 ----D---- C:\Windows\debug
2015-05-22 00:31:30 ----D---- C:\Users\marianek\AppData\Roaming\vlc
2015-05-21 23:53:39 ----RD---- C:\Program Files (x86)
2015-05-18 13:12:04 ----D---- C:\Windows\Tasks
2015-05-17 17:11:39 ----A---- C:\AILog.txt
2015-05-14 17:15:38 ----D---- C:\Windows\Microsoft.NET
2015-05-14 17:14:53 ----RSD---- C:\Windows\assembly
2015-05-14 16:51:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-05-14 16:51:32 ----D---- C:\Windows\system32\cs-CZ
2015-05-14 16:51:29 ----D---- C:\Program Files\Internet Explorer
2015-05-14 16:51:23 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-14 16:51:14 ----D---- C:\Windows\system32\en-US
2015-05-14 16:51:03 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-14 16:50:17 ----D---- C:\Windows\AppPatch
2015-05-14 16:50:08 ----D---- C:\Windows\system32\AdvancedInstallers
2015-05-14 16:49:49 ----D---- C:\Windows\system32\DriverStore
2015-05-14 16:49:48 ----D---- C:\Windows\system32\drivers\UMDF
2015-05-14 16:48:51 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-14 16:48:50 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-13 23:03:13 ----D---- C:\Windows\system32\MRT
2015-05-13 22:56:02 ----A---- C:\Windows\system32\MRT.exe
2015-05-13 21:42:06 ----D---- C:\Windows\system32\catroot2
2015-04-30 09:54:16 ----D---- C:\Windows\SYSWOW64\Dism
2015-04-30 09:54:16 ----D---- C:\Program Files\Windows Media Player
2015-04-30 09:54:16 ----D---- C:\Program Files (x86)\Windows Media Player
2015-04-30 09:54:11 ----D---- C:\Windows\system32\Dism
2015-04-30 09:54:03 ----D---- C:\Windows\system32\Boot
2015-04-30 09:54:02 ----D---- C:\Windows\system32\CodeIntegrity
2015-04-30 09:53:45 ----D---- C:\Windows\PolicyDefinitions
2015-04-30 09:53:42 ----D---- C:\Windows\tracing
2015-04-30 09:53:39 ----D---- C:\Windows\AppCompat
2015-04-30 09:53:38 ----SD---- C:\Windows\system32\CompatTel
2015-04-30 09:53:36 ----D---- C:\Windows\system32\wbem
2015-04-30 09:53:35 ----SD---- C:\ProgramData\Microsoft
2015-04-30 06:13:49 ----D---- C:\Windows\system32\catroot
2015-04-30 06:00:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-29 06:31:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-25 08:45:42 ----SHD---- C:\System Volume Information
2015-04-25 08:40:39 ----D---- C:\Windows\system32\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-25 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-25 272248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-25 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-25 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-04-25 442264]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-04-02 283064]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-02-12 249000]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-02-12 99496]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-02-12 42152]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-02-12 93352]
R1 iSafeNetFilter;YAC NDIS Driver; C:\Windows\system32\DRIVERS\iSafeNetFilter.sys [2015-02-02 52392]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-25 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-25 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-25 137288]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-04-25 273824]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-10-14 10496000]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-14 326656]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-06-20 3678720]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-06 28832]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-02 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-07-01 342528]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-31 12306848]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-04-12 708200]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2012-11-28 1866080]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2011-09-08 535040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2014-08-07 44640]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-06 279200]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-31 12306848]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-10-14 204288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-25 343336]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-11 92216]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-02-12 120128]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-09-08 305152]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-25 4034896]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2011-01-11 788536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-21 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-29 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-08-09 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-21 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-04-21 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-05-21 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-11-08 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#6 Příspěvek od **Rudy** » 24 kvě 2015 17:54

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-460132011-426515808-2301705132-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-460132011-426515808-2301705132-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Users\marianek\AppData\Local\Facebook\Update

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]/64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Jaký je tam funkční antivir? Jsou tam stopy nejméně po třech.

marpie · #7 Příspěvek od **marpie** » 24 kvě 2015 18:20

Je tady funkční Avast a pak jede nějaký YAC což nevím co je. Po kliknutí na movelt se vypsaly procesy v pravém okně a pak se ntb seknul. Musel jsem ho vypnout natvrdo. Tady je log RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by marianek at 2015-05-24 19:13:00
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 344 GB (48%) free of 715 GB
Total RAM: 4030 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:13:16, on 24.5.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\trend micro\marianek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SnapMyScreen] C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe /hidden
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 10058 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
C:\Windows\System32\spoolsv.exe
"C:\Windows\System32\hkcmd.exe"
taskeng.exe {D23B5BE1-3E77-4994-A547-4097FFF40EF1}
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe" /hidden
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
ngservice.exe pipeserver
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Users\marianek\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\components\
flashplayer.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np32dsw.dll
nppdf32.dll
ShockwavePlugin.class

C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\extensions\
synchronize@nokia.suite
toolbar@centrumholdings.com

C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\searchplugins\
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-25 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-24 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-25 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-24 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-06 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-06 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-09-08 1424896]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-31 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-31 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-31 416024]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30 2804976]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\marianek\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\marianek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\marianek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-04-17 138096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NUSB3MON]
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\385C9A~1.150\SSSCHE~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-13 343168]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-13 5515496]
"SnapMyScreen"=C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe [2014-07-31 320352]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-31 390144]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-05-24 19:07:25 ----D---- C:\_OTM
2015-05-24 14:40:27 ----A---- C:\Windows\system32\drivers\iSafeNetFilter.sys
2015-05-24 14:40:17 ----D---- C:\Users\marianek\AppData\Roaming\Elex-tech
2015-05-24 14:14:39 ----D---- C:\AdwCleaner
2015-05-24 12:32:09 ----D---- C:\rsit
2015-05-24 12:32:09 ----D---- C:\Program Files\trend micro
2015-05-23 02:31:01 ----D---- C:\ProgramData\Ubisoft
2015-05-21 10:46:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-05-18 15:54:46 ----D---- C:\Users\marianek\AppData\Roaming\12560
2015-05-13 22:52:05 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 22:52:05 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 21:48:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-13 21:48:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-13 21:48:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-13 21:48:49 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-13 21:48:49 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-13 21:48:49 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-13 21:48:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-13 21:48:48 ----A---- C:\Windows\system32\iernonce.dll
2015-05-13 21:48:48 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-13 21:48:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 21:48:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-13 21:48:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-13 21:48:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-13 21:48:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\urlmon.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-13 21:48:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 21:48:43 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-13 21:48:43 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-13 21:48:42 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-13 21:48:42 ----A---- C:\Windows\system32\iesetup.dll
2015-05-13 21:48:42 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-13 21:48:41 ----A---- C:\Windows\system32\iertutil.dll
2015-05-13 21:48:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-13 21:48:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-13 21:48:40 ----A---- C:\Windows\system32\vbscript.dll
2015-05-13 21:48:39 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-13 21:48:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-13 21:48:39 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-13 21:48:39 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-13 21:48:38 ----A---- C:\Windows\system32\ieui.dll
2015-05-13 21:48:38 ----A---- C:\Windows\system32\ieframe.dll
2015-05-13 21:48:38 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-13 21:48:37 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-13 21:48:37 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\wininet.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript9.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript.dll
2015-05-13 21:48:35 ----A---- C:\Windows\system32\msrating.dll
2015-05-13 21:48:35 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-13 21:48:34 ----A---- C:\Windows\system32\mshtml.dll
2015-05-13 21:47:47 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-05-13 21:47:47 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-05-13 21:47:47 ----A---- C:\Windows\system32\schannel.dll
2015-05-13 21:47:47 ----A---- C:\Windows\system32\certcli.dll
2015-05-13 21:46:31 ----A---- C:\Windows\system32\FntCache.dll
2015-05-13 21:46:30 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-05-13 21:46:30 ----A---- C:\Windows\system32\win32k.sys
2015-05-13 21:46:30 ----A---- C:\Windows\system32\DWrite.dll
2015-05-13 21:46:23 ----A---- C:\Windows\system32\services.exe
2015-05-13 21:45:05 ----A---- C:\Windows\system32\UtcResources.dll
2015-05-13 21:45:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-05-13 21:45:04 ----A---- C:\Windows\system32\diagtrack.dll
2015-05-13 21:45:03 ----A---- C:\Windows\system32\ntdll.dll
2015-05-13 21:45:02 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-05-13 21:45:02 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-05-13 21:45:01 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-13 21:45:01 ----A---- C:\Windows\system32\tdh.dll
2015-05-13 21:45:00 ----A---- C:\Windows\system32\advapi32.dll
2015-05-13 21:44:59 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-05-13 21:44:59 ----A---- C:\Windows\system32\kernel32.dll
2015-05-13 21:44:58 ----A---- C:\Windows\system32\msv1_0.dll
2015-05-13 21:44:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-05-13 21:44:57 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\wow64.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\lsasrv.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\KernelBase.dll
2015-05-13 21:44:56 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-05-13 21:44:56 ----A---- C:\Windows\system32\tracerpt.exe
2015-05-13 21:44:56 ----A---- C:\Windows\system32\sechost.dll
2015-05-13 21:44:56 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-05-13 21:44:55 ----A---- C:\Windows\system32\logman.exe
2015-05-13 21:44:55 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-05-13 21:44:54 ----A---- C:\Windows\system32\srcore.dll
2015-05-13 21:44:53 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-05-13 21:44:53 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-05-13 21:44:53 ----A---- C:\Windows\system32\winsrv.dll
2015-05-13 21:44:53 ----A---- C:\Windows\system32\conhost.exe
2015-05-13 21:44:52 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-05-13 21:44:52 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\smss.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\rstrui.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\kerberos.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-05-13 21:44:51 ----A---- C:\Windows\system32\wdigest.dll
2015-05-13 21:44:51 ----A---- C:\Windows\system32\typeperf.exe
2015-05-13 21:44:51 ----A---- C:\Windows\system32\ncrypt.dll
2015-05-13 21:44:50 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-05-13 21:44:50 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-05-13 21:44:50 ----A---- C:\Windows\system32\TSpkg.dll
2015-05-13 21:44:50 ----A---- C:\Windows\system32\sspicli.dll
2015-05-13 21:44:50 ----A---- C:\Windows\system32\relog.exe
2015-05-13 21:44:50 ----A---- C:\Windows\system32\lsass.exe
2015-05-13 21:44:49 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-05-13 21:44:49 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-05-13 21:44:49 ----A---- C:\Windows\system32\csrsrv.dll
2015-05-13 21:44:49 ----A---- C:\Windows\system32\auditpol.exe
2015-05-13 21:44:48 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-05-13 21:44:48 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-05-13 21:44:48 ----A---- C:\Windows\system32\srclient.dll
2015-05-13 21:44:48 ----A---- C:\Windows\system32\diskperf.exe
2015-05-13 21:44:47 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-05-13 21:44:47 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\wow64win.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\sspisrv.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\secur32.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\ntvdm64.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-05-13 21:44:46 ----A---- C:\Windows\system32\wow64cpu.dll
2015-05-13 21:44:46 ----A---- C:\Windows\system32\credssp.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 21:44:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-05-13 21:44:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 21:44:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\user.exe
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\system32\apisetschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\system32\adtschema.dll
2015-05-13 21:44:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-05-13 21:44:36 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-05-13 21:44:36 ----A---- C:\Windows\system32\msobjs.dll
2015-05-13 21:44:36 ----A---- C:\Windows\system32\msaudite.dll
2015-05-13 21:43:25 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-05-13 21:43:25 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-05-13 21:43:25 ----A---- C:\Windows\system32\sdbinst.exe
2015-05-13 21:43:25 ----A---- C:\Windows\system32\apphelp.dll
2015-05-13 21:43:25 ----A---- C:\Windows\system32\aelupsvc.dll
2015-05-13 21:43:24 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-05-13 21:43:24 ----A---- C:\Windows\system32\shimeng.dll
2015-05-13 21:43:15 ----A---- C:\Windows\system32\InkEd.dll
2015-05-13 21:43:14 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-05-13 21:42:40 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-05-13 21:42:40 ----A---- C:\Windows\system32\wpdshext.dll
2015-05-13 21:42:27 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-05-13 21:42:27 ----A---- C:\Windows\system32\poqexec.exe
2015-04-30 09:53:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-30 09:53:40 ----SD---- C:\Windows\system32\GWX
2015-04-30 09:53:36 ----D---- C:\Windows\system32\appraiser
2015-04-30 05:27:52 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-04-30 05:27:52 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-04-29 05:12:15 ----A---- C:\Windows\system32\pku2u.dll
2015-04-29 05:12:14 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-04-29 04:57:21 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-04-29 04:57:21 ----A---- C:\Windows\system32\msi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\wdi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\powertracker.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\perftrack.dll
2015-04-28 14:10:54 ----D---- C:\4a8c8e1bbe82ca81fb7c13
2015-04-25 12:16:47 ----D---- C:\Users\marianek\AppData\Roaming\DVDFab9
2015-04-25 12:15:47 ----D---- C:\Program Files (x86)\DVDFab 9
2015-04-25 11:57:52 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-04-25 11:57:52 ----A---- C:\Windows\system32\drmv2clt.dll
2015-04-25 11:57:52 ----A---- C:\Windows\system32\blackbox.dll
2015-04-25 11:57:51 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-04-25 11:57:49 ----A---- C:\Windows\system32\wmp.dll
2015-04-25 11:57:47 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-04-25 11:57:47 ----A---- C:\Windows\system32\mf.dll
2015-04-25 11:57:46 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-04-25 11:57:46 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-04-25 11:57:46 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-04-25 11:57:45 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-04-25 11:57:44 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-04-25 11:57:43 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-04-25 11:57:43 ----A---- C:\Windows\system32\crypt32.dll
2015-04-25 11:57:42 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-04-25 11:57:42 ----A---- C:\Windows\system32\ci.dll
2015-04-25 11:57:41 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-04-25 11:57:40 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-04-25 11:57:40 ----A---- C:\Windows\system32\cryptsvc.dll
2015-04-25 11:57:39 ----A---- C:\Windows\system32\winresume.exe
2015-04-25 11:57:39 ----A---- C:\Windows\system32\winload.exe
2015-04-25 11:57:39 ----A---- C:\Windows\system32\quartz.dll
2015-04-25 11:57:38 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\wintrust.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\evr.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\audiosrv.dll
2015-04-25 11:57:37 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-04-25 11:57:37 ----A---- C:\Windows\system32\cryptui.dll
2015-04-25 11:57:36 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-04-25 11:57:36 ----A---- C:\Windows\system32\qdvd.dll
2015-04-25 11:57:35 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-04-25 11:57:35 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-04-25 11:57:35 ----A---- C:\Windows\system32\mfplat.dll
2015-04-25 11:57:35 ----A---- C:\Windows\system32\AudioEng.dll
2015-04-25 11:57:34 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-04-25 11:57:34 ----A---- C:\Windows\system32\pcasvc.dll
2015-04-25 11:57:33 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-04-25 11:57:33 ----A---- C:\Windows\system32\EncDump.dll
2015-04-25 11:57:33 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-04-25 11:57:33 ----A---- C:\Windows\system32\AudioSes.dll
2015-04-25 11:57:32 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-04-25 11:57:32 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-04-25 11:57:32 ----A---- C:\Windows\system32\cryptsp.dll
2015-04-25 11:57:31 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-04-25 11:57:31 ----A---- C:\Windows\system32\msscp.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\msnetobj.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\appidsvc.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\appidapi.dll
2015-04-25 11:57:27 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-04-25 11:57:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-04-25 11:57:27 ----A---- C:\Windows\system32\cryptnet.dll
2015-04-25 11:57:26 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-04-25 11:57:26 ----A---- C:\Windows\system32\drivers\appid.sys
2015-04-25 11:57:26 ----A---- C:\Windows\system32\audiodg.exe
2015-04-25 11:57:25 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-04-25 11:57:25 ----A---- C:\Windows\system32\rrinstaller.exe
2015-04-25 11:57:24 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-04-25 11:57:23 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-04-25 11:57:23 ----A---- C:\Windows\system32\pcadm.dll
2015-04-25 11:57:23 ----A---- C:\Windows\system32\mfps.dll
2015-04-25 11:57:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-04-25 11:57:21 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-04-25 11:57:21 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-04-25 11:57:21 ----A---- C:\Windows\system32\mfpmp.exe
2015-04-25 11:57:20 ----A---- C:\Windows\system32\pcawrk.exe
2015-04-25 11:57:20 ----A---- C:\Windows\system32\msmmsp.dll
2015-04-25 11:57:19 ----A---- C:\Windows\system32\pcalua.exe
2015-04-25 11:57:18 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-04-25 11:57:16 ----A---- C:\Windows\system32\spwmp.dll
2015-04-25 11:57:15 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-04-25 11:57:15 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-04-25 11:57:15 ----A---- C:\Windows\system32\pcaevts.dll
2015-04-25 11:57:15 ----A---- C:\Windows\system32\dxmasf.dll
2015-04-25 11:57:14 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-04-25 11:57:14 ----A---- C:\Windows\system32\mferror.dll
2015-04-25 11:57:13 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-04-25 11:57:13 ----A---- C:\Windows\system32\wmploc.DLL
2015-04-25 11:40:06 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-04-25 11:40:06 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\lpk.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\atmlib.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\atmfd.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-04-25 11:40:05 ----A---- C:\Windows\system32\fontsub.dll
2015-04-25 11:40:05 ----A---- C:\Windows\system32\dciman32.dll
2015-04-25 11:34:00 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-04-25 11:34:00 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-04-25 11:26:49 ----A---- C:\Windows\system32\profsvc.dll
2015-04-25 11:22:42 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-04-25 11:22:42 ----A---- C:\Windows\system32\mscorier.dll
2015-04-25 11:22:41 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-04-25 11:22:41 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-04-25 11:22:41 ----A---- C:\Windows\system32\mscories.dll
2015-04-25 11:22:41 ----A---- C:\Windows\system32\dfshim.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\rdpudd.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\rdpcorets.dll
2015-04-25 11:16:00 ----A---- C:\Windows\system32\termsrv.dll
2015-04-25 11:15:46 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-04-25 11:15:46 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-04-25 11:15:46 ----A---- C:\Windows\system32\nlasvc.dll
2015-04-25 11:15:44 ----A---- C:\Windows\system32\d3d10warp.dll
2015-04-25 11:15:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-25 11:15:25 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-25 11:15:25 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wups2.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wups.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wudriver.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wucltux.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuapp.exe
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuapi.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-25 11:14:55 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-04-25 11:14:52 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-04-25 11:14:52 ----A---- C:\Windows\system32\ubpm.dll
2015-04-25 11:14:49 ----A---- C:\Windows\system32\shell32.dll
2015-04-25 11:14:48 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-04-25 11:14:36 ----A---- C:\Windows\system32\aitstatic.exe
2015-04-25 11:14:35 ----A---- C:\Windows\system32\invagent.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\generaltel.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\devinv.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\appraiser.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\aepic.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\aeinv.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\acmigration.dll
2015-04-25 11:14:32 ----A---- C:\Windows\system32\aepdu.dll
2015-04-25 11:11:44 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-04-25 11:11:42 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-25 11:11:42 ----A---- C:\Windows\system32\gdi32.dll
2015-04-25 11:06:21 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-25 11:06:21 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-25 11:06:21 ----A---- C:\Windows\system32\msxml3.dll
2015-04-25 11:06:20 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-25 11:06:17 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-04-25 11:06:17 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-04-25 11:05:55 ----A---- C:\Windows\system32\drivers\cng.sys
2015-04-25 11:05:13 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-04-25 11:05:11 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-04-25 11:05:11 ----A---- C:\Windows\system32\oleaut32.dll
2015-04-25 11:05:09 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-25 11:03:37 ----A---- C:\Windows\SYSWOW64\charmap.exe
2015-04-25 11:03:37 ----A---- C:\Windows\system32\charmap.exe
2015-04-25 11:03:34 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-04-25 11:03:34 ----A---- C:\Windows\system32\msctf.dll
2015-04-25 11:02:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-04-25 11:02:44 ----A---- C:\Windows\system32\rastls.dll
2015-04-25 11:02:42 ----A---- C:\Windows\system32\WsmSvc.dll
2015-04-25 11:02:41 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2015-04-25 11:02:40 ----A---- C:\Windows\system32\WsmAuto.dll
2015-04-25 10:58:42 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-04-25 10:58:42 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-04-25 10:58:02 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-04-25 10:58:02 ----A---- C:\Windows\system32\tzres.dll
2015-04-25 10:57:23 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-04-25 10:57:23 ----A---- C:\Windows\system32\packager.dll
2015-04-25 10:57:07 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\winsta.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-04-25 10:57:06 ----A---- C:\Windows\system32\winlogon.exe
2015-04-25 10:57:04 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-04-25 10:55:10 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-04-25 10:55:10 ----A---- C:\Windows\system32\scesrv.dll
2015-04-25 10:55:03 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-04-25 10:55:03 ----A---- C:\Windows\system32\mstscax.dll
2015-04-25 10:55:00 ----A---- C:\Windows\system32\clfsw32.dll
2015-04-25 10:55:00 ----A---- C:\Windows\system32\clfs.sys
2015-04-25 10:54:59 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-04-25 10:53:18 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-04-25 10:53:18 ----A---- C:\Windows\system32\WMPhoto.dll
2015-04-25 08:40:32 ----A---- C:\Windows\system32\aswBoot.exe
2015-04-25 08:40:27 ----A---- C:\Windows\avastSS.scr

======List of files/folders modified in the last 1 month======

2015-05-24 19:13:12 ----D---- C:\Windows\Prefetch
2015-05-24 19:11:44 ----D---- C:\Windows\Temp
2015-05-24 19:07:25 ----D---- C:\Windows\Tasks
2015-05-24 14:42:35 ----A---- C:\Windows\SYSWOW64\log.txt
2015-05-24 14:41:00 ----D---- C:\Windows\system32\config
2015-05-24 14:40:27 ----D---- C:\Windows\system32\drivers
2015-05-24 14:40:12 ----D---- C:\Windows
2015-05-24 14:38:11 ----D---- C:\Windows\system32\log
2015-05-24 14:38:06 ----D---- C:\Program Files\Common Files
2015-05-24 14:38:06 ----D---- C:\Program Files
2015-05-24 14:37:43 ----HD---- C:\ProgramData
2015-05-24 12:51:39 ----SHD---- C:\Windows\Installer
2015-05-24 12:51:01 ----D---- C:\Windows\SysWOW64
2015-05-24 12:26:59 ----D---- C:\ProgramData\Oracle
2015-05-24 12:26:11 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 12:25:20 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-05-24 12:25:08 ----D---- C:\Program Files (x86)\Java
2015-05-24 12:20:58 ----D---- C:\Windows\inf
2015-05-24 12:16:18 ----D---- C:\Program Files\CCleaner
2015-05-24 12:04:30 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-23 04:08:16 ----D---- C:\Windows\System32
2015-05-23 04:08:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-05-23 02:30:02 ----D---- C:\Games
2015-05-22 23:02:42 ----D---- C:\Windows\system32\NDF
2015-05-22 03:00:30 ----D---- C:\Windows\winsxs
2015-05-22 02:32:08 ----D---- C:\Users\marianek\AppData\Roaming\DAEMON Tools Lite
2015-05-22 02:31:52 ----D---- C:\Program Files (x86)\Steam
2015-05-22 02:31:50 ----D---- C:\Users\marianek\AppData\Roaming\uTorrent
2015-05-22 02:28:06 ----D---- C:\Windows\Logs
2015-05-22 02:28:06 ----D---- C:\Windows\debug
2015-05-22 00:31:30 ----D---- C:\Users\marianek\AppData\Roaming\vlc
2015-05-21 23:53:39 ----RD---- C:\Program Files (x86)
2015-05-17 17:11:39 ----A---- C:\AILog.txt
2015-05-14 17:15:38 ----D---- C:\Windows\Microsoft.NET
2015-05-14 17:14:53 ----RSD---- C:\Windows\assembly
2015-05-14 16:51:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-05-14 16:51:32 ----D---- C:\Windows\system32\cs-CZ
2015-05-14 16:51:29 ----D---- C:\Program Files\Internet Explorer
2015-05-14 16:51:23 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-14 16:51:14 ----D---- C:\Windows\system32\en-US
2015-05-14 16:51:03 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-14 16:50:17 ----D---- C:\Windows\AppPatch
2015-05-14 16:50:08 ----D---- C:\Windows\system32\AdvancedInstallers
2015-05-14 16:49:49 ----D---- C:\Windows\system32\DriverStore
2015-05-14 16:49:48 ----D---- C:\Windows\system32\drivers\UMDF
2015-05-14 16:48:51 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-14 16:48:50 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-13 23:03:13 ----D---- C:\Windows\system32\MRT
2015-05-13 22:56:02 ----A---- C:\Windows\system32\MRT.exe
2015-05-13 21:42:06 ----D---- C:\Windows\system32\catroot2
2015-04-30 09:54:16 ----D---- C:\Windows\SYSWOW64\Dism
2015-04-30 09:54:16 ----D---- C:\Program Files\Windows Media Player
2015-04-30 09:54:16 ----D---- C:\Program Files (x86)\Windows Media Player
2015-04-30 09:54:11 ----D---- C:\Windows\system32\Dism
2015-04-30 09:54:03 ----D---- C:\Windows\system32\Boot
2015-04-30 09:54:02 ----D---- C:\Windows\system32\CodeIntegrity
2015-04-30 09:53:45 ----D---- C:\Windows\PolicyDefinitions
2015-04-30 09:53:42 ----D---- C:\Windows\tracing
2015-04-30 09:53:39 ----D---- C:\Windows\AppCompat
2015-04-30 09:53:38 ----SD---- C:\Windows\system32\CompatTel
2015-04-30 09:53:36 ----D---- C:\Windows\system32\wbem
2015-04-30 09:53:35 ----SD---- C:\ProgramData\Microsoft
2015-04-30 06:13:49 ----D---- C:\Windows\system32\catroot
2015-04-30 06:00:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-29 06:31:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-25 08:45:42 ----SHD---- C:\System Volume Information
2015-04-25 08:40:39 ----D---- C:\Windows\system32\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-25 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-25 272248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-25 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-25 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-04-25 442264]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-04-02 283064]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-02-12 249000]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-02-12 99496]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-02-12 42152]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-02-12 93352]
R1 iSafeNetFilter;YAC NDIS Driver; C:\Windows\system32\DRIVERS\iSafeNetFilter.sys [2015-02-02 52392]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-25 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-25 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-25 137288]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-04-25 273824]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-10-14 10496000]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-14 326656]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-06-20 3678720]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-06 28832]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-02 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-07-01 342528]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-31 12306848]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-04-12 708200]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2012-11-28 1866080]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2011-09-08 535040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2014-08-07 44640]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-06 279200]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-31 12306848]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-10-14 204288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-25 343336]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-11 92216]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-02-12 120128]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-09-08 305152]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-25 4034896]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2011-01-11 788536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-21 116648]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-29 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-08-09 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-21 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-04-21 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-05-21 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-11-08 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

marpie · #8 Příspěvek od **marpie** » 24 kvě 2015 18:23

Jo a po restartu po tom vypnutí natvrdo bych řekl že se některé soubory na ploše zdvojily.

#9 Příspěvek od **Rudy** » 24 kvě 2015 19:15

OK. Tak ještě jednou. Skript pro OTM:

:files
C:\Users\marianek\AppData\Local\Facebook\Update
c:\Program Files\Microsoft Security Client

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]/64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

Vložte do levého okna a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

marpie · #10 Příspěvek od **marpie** » 24 kvě 2015 20:11

Při kliknutí na movelt nastala modrá smrt. Napodruhé po vypnutí natvrdo se to zdařilo.

Log RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by marianek at 2015-05-24 21:06:59
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 343 GB (48%) free of 715 GB
Total RAM: 4030 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:07:01, on 24.5.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe
C:\Program Files\trend micro\marianek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SnapMyScreen] C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe /hidden
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: YAC Service (iSafeService) - Elex do Brasil Participaçoes Ltda - C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 9885 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files (x86)\Elex-tech\YAC\iSafeTray.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {2C805B5A-5D18-4847-ACC6-5AA9A122B154}
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
ngservice.exe pipeserver
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe" /hidden
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Users\marianek\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\components\
flashplayer.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np32dsw.dll
nppdf32.dll
ShockwavePlugin.class

C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\extensions\
synchronize@nokia.suite
toolbar@centrumholdings.com

C:\Users\marianek\AppData\Roaming\Mozilla\Firefox\Profiles\kfsrbsq4.default\searchplugins\
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-25 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-24 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-25 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-24 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-06 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-06 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-09-08 1424896]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-08-31 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-08-31 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-08-31 416024]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30 2804976]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\marianek\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\marianek\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NUSB3MON]
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QLBController]
C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-10-13 343168]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-26 283160]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-13 5515496]
"SnapMyScreen"=C:\Program Files (x86)\Mindspark\SnapMyScreen\SnapMyScreen.exe [2014-07-31 320352]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-31 390144]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-05-24 19:07:25 ----D---- C:\_OTM
2015-05-24 14:40:27 ----A---- C:\Windows\system32\drivers\iSafeNetFilter.sys
2015-05-24 14:40:17 ----D---- C:\Users\marianek\AppData\Roaming\Elex-tech
2015-05-24 14:14:39 ----D---- C:\AdwCleaner
2015-05-24 12:32:09 ----D---- C:\rsit
2015-05-24 12:32:09 ----D---- C:\Program Files\trend micro
2015-05-23 02:31:01 ----D---- C:\ProgramData\Ubisoft
2015-05-21 10:46:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-05-18 15:54:46 ----D---- C:\Users\marianek\AppData\Roaming\12560
2015-05-13 22:52:05 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 22:52:05 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 21:48:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-13 21:48:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-13 21:48:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-13 21:48:49 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-13 21:48:49 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-13 21:48:49 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-13 21:48:48 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-13 21:48:48 ----A---- C:\Windows\system32\iernonce.dll
2015-05-13 21:48:48 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-13 21:48:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-13 21:48:47 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-13 21:48:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-13 21:48:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-13 21:48:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-13 21:48:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-13 21:48:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\urlmon.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-13 21:48:44 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-13 21:48:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-13 21:48:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-13 21:48:43 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-13 21:48:43 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-13 21:48:42 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-13 21:48:42 ----A---- C:\Windows\system32\iesetup.dll
2015-05-13 21:48:42 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-13 21:48:41 ----A---- C:\Windows\system32\iertutil.dll
2015-05-13 21:48:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-13 21:48:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-13 21:48:40 ----A---- C:\Windows\system32\vbscript.dll
2015-05-13 21:48:39 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-13 21:48:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-13 21:48:39 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-13 21:48:39 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-13 21:48:38 ----A---- C:\Windows\system32\ieui.dll
2015-05-13 21:48:38 ----A---- C:\Windows\system32\ieframe.dll
2015-05-13 21:48:38 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-13 21:48:37 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-13 21:48:37 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\wininet.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript9.dll
2015-05-13 21:48:36 ----A---- C:\Windows\system32\jscript.dll
2015-05-13 21:48:35 ----A---- C:\Windows\system32\msrating.dll
2015-05-13 21:48:35 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-13 21:48:34 ----A---- C:\Windows\system32\mshtml.dll
2015-05-13 21:47:47 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-05-13 21:47:47 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-05-13 21:47:47 ----A---- C:\Windows\system32\schannel.dll
2015-05-13 21:47:47 ----A---- C:\Windows\system32\certcli.dll
2015-05-13 21:46:31 ----A---- C:\Windows\system32\FntCache.dll
2015-05-13 21:46:30 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-05-13 21:46:30 ----A---- C:\Windows\system32\win32k.sys
2015-05-13 21:46:30 ----A---- C:\Windows\system32\DWrite.dll
2015-05-13 21:46:23 ----A---- C:\Windows\system32\services.exe
2015-05-13 21:45:05 ----A---- C:\Windows\system32\UtcResources.dll
2015-05-13 21:45:04 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-05-13 21:45:04 ----A---- C:\Windows\system32\diagtrack.dll
2015-05-13 21:45:03 ----A---- C:\Windows\system32\ntdll.dll
2015-05-13 21:45:02 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-05-13 21:45:02 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-05-13 21:45:01 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-13 21:45:01 ----A---- C:\Windows\system32\tdh.dll
2015-05-13 21:45:00 ----A---- C:\Windows\system32\advapi32.dll
2015-05-13 21:44:59 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-05-13 21:44:59 ----A---- C:\Windows\system32\kernel32.dll
2015-05-13 21:44:58 ----A---- C:\Windows\system32\msv1_0.dll
2015-05-13 21:44:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-05-13 21:44:57 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\wow64.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\lsasrv.dll
2015-05-13 21:44:57 ----A---- C:\Windows\system32\KernelBase.dll
2015-05-13 21:44:56 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-05-13 21:44:56 ----A---- C:\Windows\system32\tracerpt.exe
2015-05-13 21:44:56 ----A---- C:\Windows\system32\sechost.dll
2015-05-13 21:44:56 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-05-13 21:44:55 ----A---- C:\Windows\system32\logman.exe
2015-05-13 21:44:55 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-05-13 21:44:54 ----A---- C:\Windows\system32\srcore.dll
2015-05-13 21:44:53 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-05-13 21:44:53 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-05-13 21:44:53 ----A---- C:\Windows\system32\winsrv.dll
2015-05-13 21:44:53 ----A---- C:\Windows\system32\conhost.exe
2015-05-13 21:44:52 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-05-13 21:44:52 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\smss.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\rstrui.exe
2015-05-13 21:44:52 ----A---- C:\Windows\system32\kerberos.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-05-13 21:44:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-05-13 21:44:51 ----A---- C:\Windows\system32\wdigest.dll
2015-05-13 21:44:51 ----A---- C:\Windows\system32\typeperf.exe
2015-05-13 21:44:51 ----A---- C:\Windows\system32\ncrypt.dll
2015-05-13 21:44:50 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-05-13 21:44:50 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-05-13 21:44:50 ----A---- C:\Windows\system32\TSpkg.dll
2015-05-13 21:44:50 ----A---- C:\Windows\system32\sspicli.dll
2015-05-13 21:44:50 ----A---- C:\Windows\system32\relog.exe
2015-05-13 21:44:50 ----A---- C:\Windows\system32\lsass.exe
2015-05-13 21:44:49 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-05-13 21:44:49 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-05-13 21:44:49 ----A---- C:\Windows\system32\csrsrv.dll
2015-05-13 21:44:49 ----A---- C:\Windows\system32\auditpol.exe
2015-05-13 21:44:48 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-05-13 21:44:48 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-05-13 21:44:48 ----A---- C:\Windows\system32\srclient.dll
2015-05-13 21:44:48 ----A---- C:\Windows\system32\diskperf.exe
2015-05-13 21:44:47 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-05-13 21:44:47 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\wow64win.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\sspisrv.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\secur32.dll
2015-05-13 21:44:47 ----A---- C:\Windows\system32\ntvdm64.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 21:44:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-05-13 21:44:46 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-05-13 21:44:46 ----A---- C:\Windows\system32\wow64cpu.dll
2015-05-13 21:44:46 ----A---- C:\Windows\system32\credssp.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-13 21:44:45 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 21:44:44 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-13 21:44:43 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-13 21:44:42 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-13 21:44:41 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-13 21:44:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-13 21:44:39 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-13 21:44:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-05-13 21:44:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-13 21:44:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\user.exe
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\system32\apisetschema.dll
2015-05-13 21:44:38 ----A---- C:\Windows\system32\adtschema.dll
2015-05-13 21:44:36 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-05-13 21:44:36 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-05-13 21:44:36 ----A---- C:\Windows\system32\msobjs.dll
2015-05-13 21:44:36 ----A---- C:\Windows\system32\msaudite.dll
2015-05-13 21:43:25 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-05-13 21:43:25 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-05-13 21:43:25 ----A---- C:\Windows\system32\sdbinst.exe
2015-05-13 21:43:25 ----A---- C:\Windows\system32\apphelp.dll
2015-05-13 21:43:25 ----A---- C:\Windows\system32\aelupsvc.dll
2015-05-13 21:43:24 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-05-13 21:43:24 ----A---- C:\Windows\system32\shimeng.dll
2015-05-13 21:43:15 ----A---- C:\Windows\system32\InkEd.dll
2015-05-13 21:43:14 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-05-13 21:42:40 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-05-13 21:42:40 ----A---- C:\Windows\system32\wpdshext.dll
2015-05-13 21:42:27 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-05-13 21:42:27 ----A---- C:\Windows\system32\poqexec.exe
2015-04-30 09:53:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-30 09:53:40 ----SD---- C:\Windows\system32\GWX
2015-04-30 09:53:36 ----D---- C:\Windows\system32\appraiser
2015-04-30 05:27:52 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-04-30 05:27:52 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-04-29 05:12:15 ----A---- C:\Windows\system32\pku2u.dll
2015-04-29 05:12:14 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-04-29 04:57:21 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-04-29 04:57:21 ----A---- C:\Windows\system32\msi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\wdi.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\powertracker.dll
2015-04-29 04:50:37 ----A---- C:\Windows\system32\perftrack.dll
2015-04-28 14:10:54 ----D---- C:\4a8c8e1bbe82ca81fb7c13
2015-04-25 12:16:47 ----D---- C:\Users\marianek\AppData\Roaming\DVDFab9
2015-04-25 12:15:47 ----D---- C:\Program Files (x86)\DVDFab 9
2015-04-25 11:57:52 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-04-25 11:57:52 ----A---- C:\Windows\system32\drmv2clt.dll
2015-04-25 11:57:52 ----A---- C:\Windows\system32\blackbox.dll
2015-04-25 11:57:51 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-04-25 11:57:49 ----A---- C:\Windows\system32\wmp.dll
2015-04-25 11:57:47 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-04-25 11:57:47 ----A---- C:\Windows\system32\mf.dll
2015-04-25 11:57:46 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-04-25 11:57:46 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-04-25 11:57:46 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-04-25 11:57:45 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-04-25 11:57:44 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-04-25 11:57:43 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-04-25 11:57:43 ----A---- C:\Windows\system32\crypt32.dll
2015-04-25 11:57:42 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-04-25 11:57:42 ----A---- C:\Windows\system32\ci.dll
2015-04-25 11:57:41 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-04-25 11:57:40 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-04-25 11:57:40 ----A---- C:\Windows\system32\cryptsvc.dll
2015-04-25 11:57:39 ----A---- C:\Windows\system32\winresume.exe
2015-04-25 11:57:39 ----A---- C:\Windows\system32\winload.exe
2015-04-25 11:57:39 ----A---- C:\Windows\system32\quartz.dll
2015-04-25 11:57:38 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\wintrust.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\evr.dll
2015-04-25 11:57:38 ----A---- C:\Windows\system32\audiosrv.dll
2015-04-25 11:57:37 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-04-25 11:57:37 ----A---- C:\Windows\system32\cryptui.dll
2015-04-25 11:57:36 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-04-25 11:57:36 ----A---- C:\Windows\system32\qdvd.dll
2015-04-25 11:57:35 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-04-25 11:57:35 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-04-25 11:57:35 ----A---- C:\Windows\system32\mfplat.dll
2015-04-25 11:57:35 ----A---- C:\Windows\system32\AudioEng.dll
2015-04-25 11:57:34 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-04-25 11:57:34 ----A---- C:\Windows\system32\pcasvc.dll
2015-04-25 11:57:33 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-04-25 11:57:33 ----A---- C:\Windows\system32\EncDump.dll
2015-04-25 11:57:33 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-04-25 11:57:33 ----A---- C:\Windows\system32\AudioSes.dll
2015-04-25 11:57:32 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-04-25 11:57:32 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-04-25 11:57:32 ----A---- C:\Windows\system32\cryptsp.dll
2015-04-25 11:57:31 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-04-25 11:57:31 ----A---- C:\Windows\system32\msscp.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\msnetobj.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\appidsvc.dll
2015-04-25 11:57:28 ----A---- C:\Windows\system32\appidapi.dll
2015-04-25 11:57:27 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-04-25 11:57:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-04-25 11:57:27 ----A---- C:\Windows\system32\cryptnet.dll
2015-04-25 11:57:26 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-04-25 11:57:26 ----A---- C:\Windows\system32\drivers\appid.sys
2015-04-25 11:57:26 ----A---- C:\Windows\system32\audiodg.exe
2015-04-25 11:57:25 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-04-25 11:57:25 ----A---- C:\Windows\system32\rrinstaller.exe
2015-04-25 11:57:24 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-04-25 11:57:23 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-04-25 11:57:23 ----A---- C:\Windows\system32\pcadm.dll
2015-04-25 11:57:23 ----A---- C:\Windows\system32\mfps.dll
2015-04-25 11:57:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-04-25 11:57:21 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-04-25 11:57:21 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-04-25 11:57:21 ----A---- C:\Windows\system32\mfpmp.exe
2015-04-25 11:57:20 ----A---- C:\Windows\system32\pcawrk.exe
2015-04-25 11:57:20 ----A---- C:\Windows\system32\msmmsp.dll
2015-04-25 11:57:19 ----A---- C:\Windows\system32\pcalua.exe
2015-04-25 11:57:18 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-04-25 11:57:16 ----A---- C:\Windows\system32\spwmp.dll
2015-04-25 11:57:15 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-04-25 11:57:15 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-04-25 11:57:15 ----A---- C:\Windows\system32\pcaevts.dll
2015-04-25 11:57:15 ----A---- C:\Windows\system32\dxmasf.dll
2015-04-25 11:57:14 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-04-25 11:57:14 ----A---- C:\Windows\system32\mferror.dll
2015-04-25 11:57:13 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-04-25 11:57:13 ----A---- C:\Windows\system32\wmploc.DLL
2015-04-25 11:40:06 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-04-25 11:40:06 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\lpk.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\atmlib.dll
2015-04-25 11:40:06 ----A---- C:\Windows\system32\atmfd.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-04-25 11:40:05 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-04-25 11:40:05 ----A---- C:\Windows\system32\fontsub.dll
2015-04-25 11:40:05 ----A---- C:\Windows\system32\dciman32.dll
2015-04-25 11:34:00 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-04-25 11:34:00 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-04-25 11:26:49 ----A---- C:\Windows\system32\profsvc.dll
2015-04-25 11:22:42 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-04-25 11:22:42 ----A---- C:\Windows\system32\mscorier.dll
2015-04-25 11:22:41 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-04-25 11:22:41 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-04-25 11:22:41 ----A---- C:\Windows\system32\mscories.dll
2015-04-25 11:22:41 ----A---- C:\Windows\system32\dfshim.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\rdpudd.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-04-25 11:16:36 ----A---- C:\Windows\system32\rdpcorets.dll
2015-04-25 11:16:00 ----A---- C:\Windows\system32\termsrv.dll
2015-04-25 11:15:46 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-04-25 11:15:46 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-04-25 11:15:46 ----A---- C:\Windows\system32\nlasvc.dll
2015-04-25 11:15:44 ----A---- C:\Windows\system32\d3d10warp.dll
2015-04-25 11:15:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-25 11:15:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-25 11:15:25 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-25 11:15:25 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wups2.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wups.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wudriver.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wucltux.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuapp.exe
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wuapi.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-25 11:15:25 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-25 11:14:55 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-04-25 11:14:52 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-04-25 11:14:52 ----A---- C:\Windows\system32\ubpm.dll
2015-04-25 11:14:49 ----A---- C:\Windows\system32\shell32.dll
2015-04-25 11:14:48 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-04-25 11:14:36 ----A---- C:\Windows\system32\aitstatic.exe
2015-04-25 11:14:35 ----A---- C:\Windows\system32\invagent.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\generaltel.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\devinv.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\appraiser.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\aepic.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\aeinv.dll
2015-04-25 11:14:35 ----A---- C:\Windows\system32\acmigration.dll
2015-04-25 11:14:32 ----A---- C:\Windows\system32\aepdu.dll
2015-04-25 11:11:44 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-04-25 11:11:42 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-25 11:11:42 ----A---- C:\Windows\system32\gdi32.dll
2015-04-25 11:06:21 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-25 11:06:21 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-25 11:06:21 ----A---- C:\Windows\system32\msxml3.dll
2015-04-25 11:06:20 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-25 11:06:17 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-04-25 11:06:17 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-04-25 11:05:55 ----A---- C:\Windows\system32\drivers\cng.sys
2015-04-25 11:05:13 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-04-25 11:05:11 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-04-25 11:05:11 ----A---- C:\Windows\system32\oleaut32.dll
2015-04-25 11:05:09 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-25 11:03:37 ----A---- C:\Windows\SYSWOW64\charmap.exe
2015-04-25 11:03:37 ----A---- C:\Windows\system32\charmap.exe
2015-04-25 11:03:34 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-04-25 11:03:34 ----A---- C:\Windows\system32\msctf.dll
2015-04-25 11:02:44 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-04-25 11:02:44 ----A---- C:\Windows\system32\rastls.dll
2015-04-25 11:02:42 ----A---- C:\Windows\system32\WsmSvc.dll
2015-04-25 11:02:41 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-04-25 11:02:41 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2015-04-25 11:02:40 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2015-04-25 11:02:40 ----A---- C:\Windows\system32\WsmAuto.dll
2015-04-25 10:58:42 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-04-25 10:58:42 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-04-25 10:58:02 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-04-25 10:58:02 ----A---- C:\Windows\system32\tzres.dll
2015-04-25 10:57:23 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-04-25 10:57:23 ----A---- C:\Windows\system32\packager.dll
2015-04-25 10:57:07 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\winsta.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-04-25 10:57:07 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-04-25 10:57:06 ----A---- C:\Windows\system32\winlogon.exe
2015-04-25 10:57:04 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-04-25 10:55:10 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-04-25 10:55:10 ----A---- C:\Windows\system32\scesrv.dll
2015-04-25 10:55:03 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-04-25 10:55:03 ----A---- C:\Windows\system32\mstscax.dll
2015-04-25 10:55:00 ----A---- C:\Windows\system32\clfsw32.dll
2015-04-25 10:55:00 ----A---- C:\Windows\system32\clfs.sys
2015-04-25 10:54:59 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-04-25 10:53:18 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-04-25 10:53:18 ----A---- C:\Windows\system32\WMPhoto.dll
2015-04-25 08:40:32 ----A---- C:\Windows\system32\aswBoot.exe
2015-04-25 08:40:27 ----A---- C:\Windows\avastSS.scr

======List of files/folders modified in the last 1 month======

2015-05-24 21:07:01 ----D---- C:\Windows\Temp
2015-05-24 21:05:45 ----D---- C:\Windows\Prefetch
2015-05-24 21:05:41 ----A---- C:\Windows\SYSWOW64\log.txt
2015-05-24 21:03:31 ----D---- C:\Windows\system32\config
2015-05-24 21:01:47 ----D---- C:\Windows
2015-05-24 20:53:27 ----D---- C:\Windows\Minidump
2015-05-24 19:21:48 ----D---- C:\Windows\winsxs
2015-05-24 19:07:25 ----D---- C:\Windows\Tasks
2015-05-24 14:40:27 ----D---- C:\Windows\system32\drivers
2015-05-24 14:38:11 ----D---- C:\Windows\system32\log
2015-05-24 14:38:06 ----D---- C:\Program Files\Common Files
2015-05-24 14:38:06 ----D---- C:\Program Files
2015-05-24 14:37:43 ----HD---- C:\ProgramData
2015-05-24 12:51:39 ----SHD---- C:\Windows\Installer
2015-05-24 12:51:01 ----D---- C:\Windows\SysWOW64
2015-05-24 12:26:59 ----D---- C:\ProgramData\Oracle
2015-05-24 12:26:11 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 12:25:20 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-05-24 12:25:08 ----D---- C:\Program Files (x86)\Java
2015-05-24 12:20:58 ----D---- C:\Windows\inf
2015-05-24 12:16:18 ----D---- C:\Program Files\CCleaner
2015-05-24 12:04:30 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-23 04:08:16 ----D---- C:\Windows\System32
2015-05-23 04:08:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-05-23 02:30:02 ----D---- C:\Games
2015-05-22 23:02:42 ----D---- C:\Windows\system32\NDF
2015-05-22 02:32:08 ----D---- C:\Users\marianek\AppData\Roaming\DAEMON Tools Lite
2015-05-22 02:31:52 ----D---- C:\Program Files (x86)\Steam
2015-05-22 02:31:50 ----D---- C:\Users\marianek\AppData\Roaming\uTorrent
2015-05-22 02:28:06 ----D---- C:\Windows\Logs
2015-05-22 02:28:06 ----D---- C:\Windows\debug
2015-05-22 00:31:30 ----D---- C:\Users\marianek\AppData\Roaming\vlc
2015-05-21 23:53:39 ----RD---- C:\Program Files (x86)
2015-05-17 17:11:39 ----A---- C:\AILog.txt
2015-05-14 17:15:38 ----D---- C:\Windows\Microsoft.NET
2015-05-14 17:14:53 ----RSD---- C:\Windows\assembly
2015-05-14 16:51:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-05-14 16:51:32 ----D---- C:\Windows\system32\cs-CZ
2015-05-14 16:51:29 ----D---- C:\Program Files\Internet Explorer
2015-05-14 16:51:23 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-14 16:51:14 ----D---- C:\Windows\system32\en-US
2015-05-14 16:51:03 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-14 16:50:17 ----D---- C:\Windows\AppPatch
2015-05-14 16:50:08 ----D---- C:\Windows\system32\AdvancedInstallers
2015-05-14 16:49:49 ----D---- C:\Windows\system32\DriverStore
2015-05-14 16:49:48 ----D---- C:\Windows\system32\drivers\UMDF
2015-05-14 16:48:51 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-14 16:48:50 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-13 23:03:13 ----D---- C:\Windows\system32\MRT
2015-05-13 22:56:02 ----A---- C:\Windows\system32\MRT.exe
2015-05-13 21:42:06 ----D---- C:\Windows\system32\catroot2
2015-04-30 09:54:16 ----D---- C:\Windows\SYSWOW64\Dism
2015-04-30 09:54:16 ----D---- C:\Program Files\Windows Media Player
2015-04-30 09:54:16 ----D---- C:\Program Files (x86)\Windows Media Player
2015-04-30 09:54:11 ----D---- C:\Windows\system32\Dism
2015-04-30 09:54:03 ----D---- C:\Windows\system32\Boot
2015-04-30 09:54:02 ----D---- C:\Windows\system32\CodeIntegrity
2015-04-30 09:53:45 ----D---- C:\Windows\PolicyDefinitions
2015-04-30 09:53:42 ----D---- C:\Windows\tracing
2015-04-30 09:53:39 ----D---- C:\Windows\AppCompat
2015-04-30 09:53:38 ----SD---- C:\Windows\system32\CompatTel
2015-04-30 09:53:36 ----D---- C:\Windows\system32\wbem
2015-04-30 09:53:35 ----SD---- C:\ProgramData\Microsoft
2015-04-30 06:13:49 ----D---- C:\Windows\system32\catroot
2015-04-30 06:00:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-29 06:31:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-04-25 08:45:42 ----SHD---- C:\System Volume Information
2015-04-25 08:40:39 ----D---- C:\Windows\system32\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-04-25 65736]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-04-25 272248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-01-13 439320]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-04-25 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-04-25 1047320]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-04-25 442264]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-04-02 283064]
R1 iSafeKrnl;YAC Mini-Filter Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [2015-02-12 249000]
R1 iSafeKrnlKit;YAC Kit Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [2015-02-12 99496]
R1 iSafeKrnlMon;YAC Monitor Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [2015-02-12 42152]
R1 iSafeKrnlR3;YAC Ring3 Driver; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [2015-02-12 93352]
R1 iSafeNetFilter;YAC NDIS Driver; C:\Windows\system32\DRIVERS\iSafeNetFilter.sys [2015-02-02 52392]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-04-25 29168]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-04-25 89944]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-04-25 137288]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-04-25 273824]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-10-14 10496000]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-10-14 326656]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-06-20 3678720]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-06 28832]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-02 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-07-01 342528]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2011-08-31 12306848]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-04-12 708200]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2012-11-28 1866080]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2011-09-08 535040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2014-08-07 44640]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-06 279200]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys []
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys []
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys []
S3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys []
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys []
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-08-31 12306848]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-10-14 204288]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-04-25 343336]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-11 92216]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-26 13336]
R2 iSafeService;YAC Service; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [2015-02-12 120128]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2011-09-08 305152]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-04-25 4034896]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2011-01-11 788536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-21 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-29 268464]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-08-09 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-21 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-04-21 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-05-21 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-11-08 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

#11 Příspěvek od **Rudy** » 24 kvě 2015 20:31

Teď bylo vše smazáno. Nastala nějaká změna? Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.

marpie · #12 Příspěvek od **marpie** » 24 kvě 2015 21:11

Jestli došlo k nějaké změně nevím, notebook se po cleanup nesekl. Chci se zeptat co ten YAC má smysl jej v NTB nechat nebo ho mám raději odinstalovat?

#13 Příspěvek od **Rudy** » 24 kvě 2015 21:27

YAC (youtube accelerator) odinstalujte. Je to AdWare. V logu ale nebyl vidět, což znamená, že nebyl spuštěn.

marpie · #14 Příspěvek od **marpie** » 24 kvě 2015 21:39

YAC je Yet Another Cleaner. I když to není youtube akcelerátor tak jsem ho raději odinstaloval. Celkem mi vadil. Při stahování programů řval, dubloval hlášky jesli opravdu stáhnout apod.

#15 Příspěvek od **Rudy** » 25 kvě 2015 16:44

OK. Tomu akcelerátoru se říká stejně. Pokud se nepoužívá, nic se neděje.

VIRY.CZ

NTB se občas seká

NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká

Re: NTB se občas seká