Dobrý deň mám problém s notebookom samovoľne si vytvára sietove prepojenia so školskou sieťov mám dojem že je napadnutý nejakým výrus
tu je log
Logfile of random's system information tool 1.10 (written by random/random)
Run by Silvia at 2015-05-26 14:10:36
Microsoft Windows 8.1
System drive C: has 132 GB (29%) free of 458 GB
Total RAM: 3986 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:10:41, on 26.5.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Silvia.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: (no name) - {E4EF8A64-0A30-48F5-B3FE-5FDA978DA775} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: (no name) - {CF0F43AB-9C23-4D7B-8040-201B82844854} - (no file)
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\RunOnce: [20150107] C:\Program Files\AVAST Software\Avast\setup\emupdate\88632d75-2a7b-41c3-a289-553a9ae15479.exe /check
O4 - HKCU\..\Run: [SnowWallpaper] C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem15.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 11314 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
atieclxx
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
dashost.exe {782db267-5de5-4be9-a47f47c369a458c9}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
HydraDM64.exe -h:131494 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --enable-threaded-compositing --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --product-version="Valve Steam Client" --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=5416 --enable-delegated-renderer --num-raster-threads=1 --disable-gpu-compositing --channel="5416.4.1995365670\2127535662" /prefetch:673131151
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe" Restart Start CCC
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\WINDOWS\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="8068.0.1988055842\1757716778" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,43 --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.1001 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=8068 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="8068.2.13405580\1719338077" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=8068 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="8068.3.532280475\77752128" /prefetch:673131151
"C:\peter\korea\ts3client_win64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=8068 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="8068.43.1885272376\667574890" /prefetch:673131151
C:\WINDOWS\system32\DllHost.exe /Processid:{3AD05575-8857-4850-9277-11B85BDB8E09}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=8068 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="8068.49.332076320\1589299963" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=8068 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="8068.50.513315011\44578033" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=8068 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="8068.51.235379813\567696199" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe216_ Global\UsGthrCtrlFltPipeMssGthrPipe216 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 584 588 596 65536 592
"C:\Users\Silvia\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForSilvia.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSilvia (null)
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\tasks\WinZipDriverUpdater_UPDATES.job - C:\Program Files (x86)\WinZip Driver Updater\winzipdu.exe -updatecheck
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511311164}]
Plus-HD-9.4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-05 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-12-16 725768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-05 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-12-16 615688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CF0F43AB-9C23-4D7B-8040-201B82844854}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CF0F43AB-9C23-4D7B-8040-201B82844854}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-24 2916152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-07-22 1425408]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2012-08-24 398656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SnowWallpaper"=C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2014-04-17 1967616]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-05-15 2888384]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-08-02 363520]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-28 91432]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-07-09 580512]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-14 5515496]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"20150107"=C:\Program Files\AVAST Software\Avast\setup\emupdate\88632d75-2a7b-41c3-a289-553a9ae15479.exe [2015-05-26 183232]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-05-26 14:10:36 ----D---- C:\rsit
2015-05-26 14:10:36 ----D---- C:\Program Files\trend micro
2015-05-26 13:53:15 ----SHD---- C:\Config.Msi
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2015-05-25 17:13:41 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2015-05-25 17:13:33 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2015-05-25 17:13:05 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\system32\d3dx10.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2015-05-24 21:03:55 ----D---- C:\Program Files (x86)\Steam
2015-05-05 15:08:28 ----D---- C:\Users\Silvia\AppData\Roaming\DropboxMaster
2015-05-05 15:04:14 ----D---- C:\Users\Silvia\AppData\Roaming\Dropbox
2015-05-05 12:29:52 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-05-05 12:29:40 ----A---- C:\WINDOWS\avastSS.scr
======List of files/folders modified in the last 1 month======
2015-05-26 14:10:39 ----D---- C:\WINDOWS\Prefetch
2015-05-26 14:10:36 ----D---- C:\Program Files
2015-05-26 14:06:48 ----D---- C:\Users\Silvia\AppData\Roaming\vlc
2015-05-26 14:02:00 ----D---- C:\WINDOWS\system32\sru
2015-05-26 13:53:43 ----SHD---- C:\WINDOWS\Installer
2015-05-26 13:53:43 ----D---- C:\WINDOWS\Temp
2015-05-26 13:53:42 ----D---- C:\Program Files (x86)
2015-05-26 13:53:37 ----D---- C:\WINDOWS\system32\Tasks
2015-05-26 13:53:24 ----RD---- C:\WINDOWS\System32
2015-05-26 13:53:24 ----D---- C:\WINDOWS\SysWOW64
2015-05-26 06:34:52 ----SHD---- C:\System Volume Information
2015-05-25 19:14:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-25 19:14:25 ----D---- C:\WINDOWS\Inf
2015-05-25 19:01:20 ----D---- C:\Program Files (x86)\Battle.net
2015-05-25 18:55:38 ----D---- C:\Program Files (x86)\Hearthstone
2015-05-25 17:11:33 ----RSD---- C:\WINDOWS\assembly
2015-05-25 17:11:21 ----D---- C:\WINDOWS\Logs
2015-05-25 17:11:17 ----D---- C:\WINDOWS\Microsoft.NET
2015-05-25 17:10:35 ----D---- C:\Windows
2015-05-24 21:09:28 ----D---- C:\WINDOWS\system32\config
2015-05-24 21:06:52 ----D---- C:\WINDOWS\WinSxS
2015-05-24 21:06:50 ----D---- C:\WINDOWS\CbsTemp
2015-05-24 21:03:56 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 21:03:42 ----D---- C:\WINDOWS\system32\catroot2
2015-05-24 16:18:34 ----D---- C:\Downloads
2015-05-20 17:26:09 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-05-20 17:25:30 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2015-05-18 18:47:34 ----D---- C:\WINDOWS\system32\drivers
2015-05-17 19:16:15 ----D---- C:\WINDOWS\system32\NDF
2015-05-16 08:19:10 ----D---- C:\WINDOWS\Tasks
2015-05-05 12:30:13 ----D---- C:\WINDOWS\system32\DriverStore
2015-04-29 15:54:10 ----D---- C:\WINDOWS\AppReadiness
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem44.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-12-13 36608]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-05-05 65736]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-05-05 272248]
R0 hpdskflt;@oem15.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-08-10 29600]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-05-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-05-05 1047320]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-05-05 442264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2014-06-27 131856]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-05-05 29168]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-05-05 89944]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-05-05 137288]
R3 Accelerometer;@oem15.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-08-10 42400]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 BtAudioBusSrv;@oem10.inf,%SvcDesc%;IVT Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-08-08 48736]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 MEIx64;@oem42.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 netr28x;@oem23.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 rtbth;@oem22.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-24 43832]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2012-07-22 540160]
R3 SynTP;@oem41.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-24 448312]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 andnetadb;@oem61.inf,%androidusb.SvcDesc%;ADB Interface DriverNet; C:\WINDOWS\System32\Drivers\lgandnetadb.sys [2012-07-03 31744]
S3 AndNetDiag;@oem62.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 ANDNetModem;@oem64.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 andnetndis;@oem65.inf,%LgNdis.Service.DispName%;LGE AndroidNet NDIS Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\lgandnetndis64.sys [2012-07-04 93184]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 dg_ssudbus;@oem47.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;@oem25.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2013-06-04 146856]
S3 Dot4Print;@oem26.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2013-06-04 21928]
S3 Dot4Scan;@oem49.inf,%Dot4Scan_Name%;Scan Class Driver for IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2013-06-04 14760]
S3 dot4usb;@oem25.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2013-06-04 43944]
S3 EagleX64;EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys []
S3 IntcDAud;@oem39.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
S3 intelkmd;intelkmd; C:\WINDOWS\system32\DRIVERS\igdpmd64.sys [2012-08-24 9000256]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSP2STOR;@oem3.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-07-04 269968]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-24 41272]
S3 ssudmdm;@oem24.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem48.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 tapoas;@oem52.inf,%DeviceDescription%;TAP-Win32 Adapter OAS; C:\WINDOWS\system32\DRIVERS\tapoas.sys [2013-07-15 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-05-05 343336]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;@oem15.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-08-10 29600]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-07-09 35232]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-14 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-03-28 249648]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2012-07-22 321536]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-07-10 138752]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-08-19 1129760]
S2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-08-02 1544192]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
S2 tor;Tor Win32 Service; C:\Program Files (x86)\Tor\tor.exe --nt-service -ControlPort 9051 []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-26 268464]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 57856]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Počítač sám vytvára sietové prepojenia zo školskou sieťov
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
RoboOndrash
- Návštěvník
- Příspěvky: 22
- Registrován: 05 bře 2015 12:25
-
Rudy
- Site Admin
- Příspěvky: 119676
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Popravdě řečeno, neznám vir, který by způsoboval automatické vytváření síť. připojení.Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
RoboOndrash
- Návštěvník
- Příspěvky: 22
- Registrován: 05 bře 2015 12:25
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
log 1
# AdwCleaner v4.104 - Report created 26/05/2015 at 16:42:58
# Updated 05/12/2014 by Xplode
# Database : 2015-05-25.3 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Silvia - SISA
# Running from : C:\Users\Silvia\Desktop\adwcleaner_4.104.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Driver Updater
Folder Deleted : C:\Program Files (x86)\WinZip Driver Updater
***** [ Scheduled Tasks ] *****
Task Deleted : WinZipDriverUpdater_UPDATES
Task Deleted : WinZipDriverUpdaterRunAtStartup
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\SDP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{9854A5C4-5BE5-46E2-A989-352DD8B37E20}_is1
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v
-\\ Google Chrome v43.0.2357.81
-\\ Comodo Dragon v
*************************
AdwCleaner[R4].txt - [1169 octets] - [26/05/2015 16:40:49]
AdwCleaner[S2].txt - [1190 octets] - [26/05/2015 16:42:58]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1250 octets] ##########
log 2
# AdwCleaner v4.205 - Log vytvorený 26/05/2015 at 20:01:45
# Aktualizované 21/05/2015 by Xplode
# Databáza : 2015-05-25.3 [Server]
# Operačný systém : Windows 8.1 (x64)
# Uživateľské meno : Silvia - SISA
# Spustené z : C:\Users\Silvia\Desktop\adwcleaner_4.205.exe
# Nastavenia : Čistenie
***** [ Služby ] *****
***** [ Súbory / Priečinky ] *****
***** [ Naplánované úlohy ] *****
***** [ Zástupcovia ] *****
***** [ Registre ] *****
Kľúč registra Zmazané : HKU\.DEFAULT\Software\AskPartnerNetwork
Kľúč registra Zmazané : HKU\.DEFAULT\Software\DefaultTab
***** [ Webové prehliadače ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v
-\\ Google Chrome v43.0.2357.81
-\\ Comodo Dragon v
*************************
AdwCleaner[R4].txt - [1169 bajtov] - [26/05/2015 16:40:49]
AdwCleaner[R5].txt - [1049 bajtov] - [26/05/2015 20:00:06]
AdwCleaner[S2].txt - [1330 bajtov] - [26/05/2015 16:42:58]
AdwCleaner[S3].txt - [971 bajtov] - [26/05/2015 20:01:45]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1030 bajtov] ##########
# AdwCleaner v4.104 - Report created 26/05/2015 at 16:42:58
# Updated 05/12/2014 by Xplode
# Database : 2015-05-25.3 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Silvia - SISA
# Running from : C:\Users\Silvia\Desktop\adwcleaner_4.104.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Driver Updater
Folder Deleted : C:\Program Files (x86)\WinZip Driver Updater
***** [ Scheduled Tasks ] *****
Task Deleted : WinZipDriverUpdater_UPDATES
Task Deleted : WinZipDriverUpdaterRunAtStartup
***** [ Shortcuts ] *****
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\SDP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{9854A5C4-5BE5-46E2-A989-352DD8B37E20}_is1
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v
-\\ Google Chrome v43.0.2357.81
-\\ Comodo Dragon v
*************************
AdwCleaner[R4].txt - [1169 octets] - [26/05/2015 16:40:49]
AdwCleaner[S2].txt - [1190 octets] - [26/05/2015 16:42:58]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1250 octets] ##########
log 2
# AdwCleaner v4.205 - Log vytvorený 26/05/2015 at 20:01:45
# Aktualizované 21/05/2015 by Xplode
# Databáza : 2015-05-25.3 [Server]
# Operačný systém : Windows 8.1 (x64)
# Uživateľské meno : Silvia - SISA
# Spustené z : C:\Users\Silvia\Desktop\adwcleaner_4.205.exe
# Nastavenia : Čistenie
***** [ Služby ] *****
***** [ Súbory / Priečinky ] *****
***** [ Naplánované úlohy ] *****
***** [ Zástupcovia ] *****
***** [ Registre ] *****
Kľúč registra Zmazané : HKU\.DEFAULT\Software\AskPartnerNetwork
Kľúč registra Zmazané : HKU\.DEFAULT\Software\DefaultTab
***** [ Webové prehliadače ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v
-\\ Google Chrome v43.0.2357.81
-\\ Comodo Dragon v
*************************
AdwCleaner[R4].txt - [1169 bajtov] - [26/05/2015 16:40:49]
AdwCleaner[R5].txt - [1049 bajtov] - [26/05/2015 20:00:06]
AdwCleaner[S2].txt - [1330 bajtov] - [26/05/2015 16:42:58]
AdwCleaner[S3].txt - [971 bajtov] - [26/05/2015 20:01:45]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1030 bajtov] ##########
-
Rudy
- Site Admin
- Příspěvky: 119676
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
RoboOndrash
- Návštěvník
- Příspěvky: 22
- Registrován: 05 bře 2015 12:25
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
Logfile of random's system information tool 1.10 (written by random/random)
Run by Silvia at 2015-05-26 22:01:15
Microsoft Windows 8.1
System drive C: has 131 GB (29%) free of 458 GB
Total RAM: 3986 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:01:17, on 26.5.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Silvia.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: (no name) - {E4EF8A64-0A30-48F5-B3FE-5FDA978DA775} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: (no name) - {CF0F43AB-9C23-4D7B-8040-201B82844854} - (no file)
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [SnowWallpaper] C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem15.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 11073 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\atiesrxx.exe
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
dashost.exe {72ffab87-2688-41f0-a1d269fa9d44160b}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
atieclxx
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:131398 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4760.0.212822369\1957296195" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,43 --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.1001 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4760 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4760.2.598766602\1549894036" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4760 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4760.3.652668887\646879653" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4760 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4760.9.1725783316\1422041038" /prefetch:673131151
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4760 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4760.12.47198640\1227914841" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 588 592 600 65536 596
C:\WINDOWS\System32\ThumbnailExtractionHost.exe -Embedding
"C:\Users\Silvia\Downloads\RSITx64 (1).exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForSilvia.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSilvia (null)
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511311164}]
Plus-HD-9.4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-05 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-12-16 725768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-05 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-12-16 615688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CF0F43AB-9C23-4D7B-8040-201B82844854}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CF0F43AB-9C23-4D7B-8040-201B82844854}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-24 2916152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-07-22 1425408]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2012-08-24 398656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SnowWallpaper"=C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2014-04-17 1967616]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-05-15 2888384]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-08-02 363520]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-28 91432]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-07-09 580512]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-14 5515496]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-05-26 20:02:58 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-05-26 20:02:58 ----SD---- C:\WINDOWS\system32\GWX
2015-05-26 20:02:58 ----D---- C:\WINDOWS\Migration
2015-05-26 18:22:15 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-26 18:22:15 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-26 17:01:07 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-05-26 16:40:47 ----D---- C:\AdwCleaner
2015-05-26 16:40:47 ----A---- C:\AdwCleanerDebug.txt
2015-05-26 14:10:36 ----D---- C:\rsit
2015-05-26 14:10:36 ----D---- C:\Program Files\trend micro
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2015-05-25 17:13:41 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2015-05-25 17:13:33 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2015-05-25 17:13:05 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\system32\d3dx10.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2015-05-24 21:13:56 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-05-24 21:13:55 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-05-24 21:13:54 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-05-24 21:13:53 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-05-24 21:13:53 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\schannel.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2015-05-24 21:11:08 ----A---- C:\WINDOWS\system32\SRH.dll
2015-05-24 21:11:08 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\system32\dbgeng.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\system32\dbghelp.dll
2015-05-24 21:11:05 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-05-24 21:11:04 ----A---- C:\WINDOWS\system32\win32k.sys
2015-05-24 21:11:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\certcli.dll
2015-05-24 21:10:55 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2015-05-24 21:10:55 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\shimeng.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2015-05-24 21:10:53 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-05-24 21:10:53 ----A---- C:\WINDOWS\system32\services.exe
2015-05-24 21:10:52 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2015-05-24 21:10:50 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2015-05-24 21:10:50 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2015-05-24 21:10:49 ----A---- C:\WINDOWS\SYSWOW64\WPDShextAutoplay.exe
2015-05-24 21:10:49 ----A---- C:\WINDOWS\system32\WPDShextAutoplay.exe
2015-05-24 21:10:46 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2015-05-24 21:10:45 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2015-05-24 21:10:44 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-05-24 21:10:44 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-24 21:10:38 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-05-24 21:10:37 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-05-24 21:10:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-05-24 21:10:34 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-05-24 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\system32\wininet.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\jscript.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\inseng.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\ieui.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-05-24 21:07:27 ----A---- C:\WINDOWS\system32\InkEd.dll
2015-05-24 21:07:26 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2015-05-24 21:07:26 ----A---- C:\WINDOWS\system32\jnwmon.dll
2015-05-24 21:03:55 ----D---- C:\Program Files (x86)\Steam
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-05-09 02:29:59 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wups2.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wups.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-05-09 02:29:57 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-05-09 02:29:42 ----A---- C:\WINDOWS\system32\tdh.dll
2015-05-09 02:29:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-05-09 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\system32\sechost.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\typeperf.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\logman.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\tracerpt.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\logman.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\relog.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\diskperf.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\wow64.dll
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\typeperf.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\relog.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\diskperf.exe
2015-05-09 02:29:37 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-05-09 02:29:36 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-05-09 02:29:36 ----A---- C:\WINDOWS\system32\msctf.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\lsm.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-05-09 02:29:34 ----A---- C:\WINDOWS\system32\workerdd.dll
2015-05-09 02:29:31 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-05-09 02:29:30 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-05-09 02:21:34 ----A---- C:\WINDOWS\system32\invagent.dll
2015-05-09 02:21:34 ----A---- C:\WINDOWS\system32\devinv.dll
2015-05-09 02:21:33 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-05-05 15:08:28 ----D---- C:\Users\Silvia\AppData\Roaming\DropboxMaster
2015-05-05 15:04:14 ----D---- C:\Users\Silvia\AppData\Roaming\Dropbox
2015-05-05 12:29:52 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-05-05 12:29:40 ----A---- C:\WINDOWS\avastSS.scr
======List of files/folders modified in the last 1 month======
2015-05-26 22:00:00 ----D---- C:\WINDOWS\system32\sru
2015-05-26 21:43:38 ----D---- C:\WINDOWS\Prefetch
2015-05-26 20:22:00 ----HD---- C:\Program Files\WindowsApps
2015-05-26 20:19:10 ----D---- C:\WINDOWS\AppReadiness
2015-05-26 20:17:45 ----D---- C:\WINDOWS\Temp
2015-05-26 20:16:56 ----D---- C:\WINDOWS\system32\config
2015-05-26 20:09:46 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2015-05-26 20:09:20 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-05-26 20:07:48 ----D---- C:\WINDOWS\Microsoft.NET
2015-05-26 20:07:46 ----D---- C:\WINDOWS\WinSxS
2015-05-26 20:07:31 ----D---- C:\WINDOWS\SysWOW64
2015-05-26 20:06:28 ----D---- C:\WINDOWS\Inf
2015-05-26 20:05:53 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 20:05:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-26 20:03:11 ----RD---- C:\WINDOWS\System32
2015-05-26 20:03:11 ----D---- C:\WINDOWS\system32\sk-SK
2015-05-26 20:03:08 ----D---- C:\WINDOWS\system32\drivers
2015-05-26 20:03:07 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-05-26 20:03:01 ----RSD---- C:\WINDOWS\Fonts
2015-05-26 20:03:01 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2015-05-26 20:02:59 ----D---- C:\WINDOWS\system32\en-US
2015-05-26 20:02:59 ----D---- C:\WINDOWS\apppatch
2015-05-26 20:02:58 ----D---- C:\Windows
2015-05-26 20:02:53 ----D---- C:\Program Files\Internet Explorer
2015-05-26 20:02:53 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-26 20:02:52 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-05-26 20:02:49 ----D---- C:\WINDOWS\system32\DriverStore
2015-05-26 19:50:08 ----D---- C:\WINDOWS\system32\NDF
2015-05-26 19:09:08 ----RSD---- C:\WINDOWS\assembly
2015-05-26 19:08:01 ----SHD---- C:\System Volume Information
2015-05-26 18:41:00 ----D---- C:\WINDOWS\CbsTemp
2015-05-26 18:14:35 ----D---- C:\WINDOWS\system32\MRT
2015-05-26 17:45:54 ----SHD---- C:\WINDOWS\Installer
2015-05-26 17:41:43 ----D---- C:\WINDOWS\system32\catroot2
2015-05-26 17:40:07 ----D---- C:\Program Files\Windows Journal
2015-05-26 17:39:44 ----SD---- C:\WINDOWS\system32\CompatTel
2015-05-26 17:39:44 ----D---- C:\WINDOWS\system32\appraiser
2015-05-26 17:35:38 ----D---- C:\peter
2015-05-26 16:42:59 ----D---- C:\WINDOWS\Tasks
2015-05-26 16:42:59 ----D---- C:\WINDOWS\system32\Tasks
2015-05-26 16:42:59 ----D---- C:\Program Files (x86)
2015-05-26 14:10:36 ----D---- C:\Program Files
2015-05-26 14:06:48 ----D---- C:\Users\Silvia\AppData\Roaming\vlc
2015-05-25 19:14:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-25 19:01:20 ----D---- C:\Program Files (x86)\Battle.net
2015-05-25 18:55:38 ----D---- C:\Program Files (x86)\Hearthstone
2015-05-25 17:11:21 ----D---- C:\WINDOWS\Logs
2015-05-24 21:03:56 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 16:18:34 ----D---- C:\Downloads
2015-05-05 19:59:54 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-04-30 10:07:28 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem44.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-12-13 36608]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-05-05 65736]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-05-05 272248]
R0 hpdskflt;@oem15.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-08-10 29600]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-05-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-05-05 1047320]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-05-05 442264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2014-06-27 131856]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-05-05 29168]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-05-05 89944]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-05-05 137288]
R3 Accelerometer;@oem15.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-08-10 42400]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 BtAudioBusSrv;@oem10.inf,%SvcDesc%;IVT Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-08-08 48736]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 MEIx64;@oem42.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 netr28x;@oem23.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 rtbth;@oem22.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-24 43832]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2012-07-22 540160]
R3 SynTP;@oem41.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-24 448312]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 andnetadb;@oem61.inf,%androidusb.SvcDesc%;ADB Interface DriverNet; C:\WINDOWS\System32\Drivers\lgandnetadb.sys [2012-07-03 31744]
S3 AndNetDiag;@oem62.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 ANDNetModem;@oem64.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 andnetndis;@oem65.inf,%LgNdis.Service.DispName%;LGE AndroidNet NDIS Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\lgandnetndis64.sys [2012-07-04 93184]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 dg_ssudbus;@oem47.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;@oem25.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2013-06-04 146856]
S3 Dot4Print;@oem26.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2013-06-04 21928]
S3 Dot4Scan;@oem49.inf,%Dot4Scan_Name%;Scan Class Driver for IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2013-06-04 14760]
S3 dot4usb;@oem25.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2013-06-04 43944]
S3 EagleX64;EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys []
S3 IntcDAud;@oem39.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
S3 intelkmd;intelkmd; C:\WINDOWS\system32\DRIVERS\igdpmd64.sys [2012-08-24 9000256]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSP2STOR;@oem3.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-07-04 269968]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-24 41272]
S3 ssudmdm;@oem24.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem48.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 tapoas;@oem52.inf,%DeviceDescription%;TAP-Win32 Adapter OAS; C:\WINDOWS\system32\DRIVERS\tapoas.sys [2013-07-15 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-05-05 343336]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;@oem15.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-08-10 29600]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-07-09 35232]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-14 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-03-28 249648]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2012-07-22 321536]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-07-10 138752]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-08-19 1129760]
S2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-08-02 1544192]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
S2 tor;Tor Win32 Service; C:\Program Files (x86)\Tor\tor.exe --nt-service -ControlPort 9051 []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-26 268464]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
Run by Silvia at 2015-05-26 22:01:15
Microsoft Windows 8.1
System drive C: has 131 GB (29%) free of 458 GB
Total RAM: 3986 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:01:17, on 26.5.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Silvia.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: (no name) - {E4EF8A64-0A30-48F5-B3FE-5FDA978DA775} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: (no name) - {CF0F43AB-9C23-4D7B-8040-201B82844854} - (no file)
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [SnowWallpaper] C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem15.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 11073 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\atiesrxx.exe
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
dashost.exe {72ffab87-2688-41f0-a1d269fa9d44160b}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
atieclxx
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:131398 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4760.0.212822369\1957296195" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,20,43 --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.1001 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4760 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4760.2.598766602\1549894036" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4760 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4760.3.652668887\646879653" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4760 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4760.9.1725783316\1422041038" /prefetch:673131151
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-US --force-fieldtrials="AffiliationBasedMatching/Disabled/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Disabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A3/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*V8CacheOptions/heuristics/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4760 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=1 --use-image-texture-target=3553 --channel="4760.12.47198640\1227914841" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 588 592 600 65536 596
C:\WINDOWS\System32\ThumbnailExtractionHost.exe -Embedding
"C:\Users\Silvia\Downloads\RSITx64 (1).exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForSilvia.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSilvia (null)
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511311164}]
Plus-HD-9.4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-05 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-12-16 725768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
MSS+ Identifier - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09 96128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-05 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-12-16 615688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CF0F43AB-9C23-4D7B-8040-201B82844854}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CF0F43AB-9C23-4D7B-8040-201B82844854}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-24 2916152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-07-22 1425408]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2012-08-24 398656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SnowWallpaper"=C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2014-04-17 1967616]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-05-15 2888384]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-08-02 363520]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-28 91432]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-07-09 580512]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-14 5515496]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-05-26 20:02:58 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-05-26 20:02:58 ----SD---- C:\WINDOWS\system32\GWX
2015-05-26 20:02:58 ----D---- C:\WINDOWS\Migration
2015-05-26 18:22:15 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-26 18:22:15 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-26 17:01:07 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-05-26 16:40:47 ----D---- C:\AdwCleaner
2015-05-26 16:40:47 ----A---- C:\AdwCleanerDebug.txt
2015-05-26 14:10:36 ----D---- C:\rsit
2015-05-26 14:10:36 ----D---- C:\Program Files\trend micro
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2015-05-25 17:13:41 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2015-05-25 17:13:33 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2015-05-25 17:13:05 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\system32\d3dx10.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2015-05-24 21:13:56 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-05-24 21:13:55 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-05-24 21:13:54 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-05-24 21:13:53 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-05-24 21:13:53 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\schannel.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2015-05-24 21:11:08 ----A---- C:\WINDOWS\system32\SRH.dll
2015-05-24 21:11:08 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\system32\dbgeng.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\system32\dbghelp.dll
2015-05-24 21:11:05 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-05-24 21:11:04 ----A---- C:\WINDOWS\system32\win32k.sys
2015-05-24 21:11:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\certcli.dll
2015-05-24 21:10:55 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2015-05-24 21:10:55 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\shimeng.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2015-05-24 21:10:53 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-05-24 21:10:53 ----A---- C:\WINDOWS\system32\services.exe
2015-05-24 21:10:52 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2015-05-24 21:10:50 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2015-05-24 21:10:50 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2015-05-24 21:10:49 ----A---- C:\WINDOWS\SYSWOW64\WPDShextAutoplay.exe
2015-05-24 21:10:49 ----A---- C:\WINDOWS\system32\WPDShextAutoplay.exe
2015-05-24 21:10:46 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2015-05-24 21:10:45 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2015-05-24 21:10:44 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-05-24 21:10:44 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-24 21:10:38 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-05-24 21:10:37 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-05-24 21:10:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-05-24 21:10:34 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-05-24 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\system32\wininet.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\jscript.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\inseng.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\ieui.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-05-24 21:07:27 ----A---- C:\WINDOWS\system32\InkEd.dll
2015-05-24 21:07:26 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2015-05-24 21:07:26 ----A---- C:\WINDOWS\system32\jnwmon.dll
2015-05-24 21:03:55 ----D---- C:\Program Files (x86)\Steam
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-05-09 02:29:59 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wups2.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wups.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-05-09 02:29:57 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-05-09 02:29:42 ----A---- C:\WINDOWS\system32\tdh.dll
2015-05-09 02:29:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-05-09 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\system32\sechost.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\typeperf.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\logman.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\tracerpt.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\logman.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\relog.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\diskperf.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\wow64.dll
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\typeperf.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\relog.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\diskperf.exe
2015-05-09 02:29:37 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-05-09 02:29:36 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-05-09 02:29:36 ----A---- C:\WINDOWS\system32\msctf.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\lsm.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-05-09 02:29:34 ----A---- C:\WINDOWS\system32\workerdd.dll
2015-05-09 02:29:31 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-05-09 02:29:30 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-05-09 02:21:34 ----A---- C:\WINDOWS\system32\invagent.dll
2015-05-09 02:21:34 ----A---- C:\WINDOWS\system32\devinv.dll
2015-05-09 02:21:33 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-05-05 15:08:28 ----D---- C:\Users\Silvia\AppData\Roaming\DropboxMaster
2015-05-05 15:04:14 ----D---- C:\Users\Silvia\AppData\Roaming\Dropbox
2015-05-05 12:29:52 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-05-05 12:29:40 ----A---- C:\WINDOWS\avastSS.scr
======List of files/folders modified in the last 1 month======
2015-05-26 22:00:00 ----D---- C:\WINDOWS\system32\sru
2015-05-26 21:43:38 ----D---- C:\WINDOWS\Prefetch
2015-05-26 20:22:00 ----HD---- C:\Program Files\WindowsApps
2015-05-26 20:19:10 ----D---- C:\WINDOWS\AppReadiness
2015-05-26 20:17:45 ----D---- C:\WINDOWS\Temp
2015-05-26 20:16:56 ----D---- C:\WINDOWS\system32\config
2015-05-26 20:09:46 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2015-05-26 20:09:20 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-05-26 20:07:48 ----D---- C:\WINDOWS\Microsoft.NET
2015-05-26 20:07:46 ----D---- C:\WINDOWS\WinSxS
2015-05-26 20:07:31 ----D---- C:\WINDOWS\SysWOW64
2015-05-26 20:06:28 ----D---- C:\WINDOWS\Inf
2015-05-26 20:05:53 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 20:05:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-26 20:03:11 ----RD---- C:\WINDOWS\System32
2015-05-26 20:03:11 ----D---- C:\WINDOWS\system32\sk-SK
2015-05-26 20:03:08 ----D---- C:\WINDOWS\system32\drivers
2015-05-26 20:03:07 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-05-26 20:03:01 ----RSD---- C:\WINDOWS\Fonts
2015-05-26 20:03:01 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2015-05-26 20:02:59 ----D---- C:\WINDOWS\system32\en-US
2015-05-26 20:02:59 ----D---- C:\WINDOWS\apppatch
2015-05-26 20:02:58 ----D---- C:\Windows
2015-05-26 20:02:53 ----D---- C:\Program Files\Internet Explorer
2015-05-26 20:02:53 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-26 20:02:52 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-05-26 20:02:49 ----D---- C:\WINDOWS\system32\DriverStore
2015-05-26 19:50:08 ----D---- C:\WINDOWS\system32\NDF
2015-05-26 19:09:08 ----RSD---- C:\WINDOWS\assembly
2015-05-26 19:08:01 ----SHD---- C:\System Volume Information
2015-05-26 18:41:00 ----D---- C:\WINDOWS\CbsTemp
2015-05-26 18:14:35 ----D---- C:\WINDOWS\system32\MRT
2015-05-26 17:45:54 ----SHD---- C:\WINDOWS\Installer
2015-05-26 17:41:43 ----D---- C:\WINDOWS\system32\catroot2
2015-05-26 17:40:07 ----D---- C:\Program Files\Windows Journal
2015-05-26 17:39:44 ----SD---- C:\WINDOWS\system32\CompatTel
2015-05-26 17:39:44 ----D---- C:\WINDOWS\system32\appraiser
2015-05-26 17:35:38 ----D---- C:\peter
2015-05-26 16:42:59 ----D---- C:\WINDOWS\Tasks
2015-05-26 16:42:59 ----D---- C:\WINDOWS\system32\Tasks
2015-05-26 16:42:59 ----D---- C:\Program Files (x86)
2015-05-26 14:10:36 ----D---- C:\Program Files
2015-05-26 14:06:48 ----D---- C:\Users\Silvia\AppData\Roaming\vlc
2015-05-25 19:14:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-25 19:01:20 ----D---- C:\Program Files (x86)\Battle.net
2015-05-25 18:55:38 ----D---- C:\Program Files (x86)\Hearthstone
2015-05-25 17:11:21 ----D---- C:\WINDOWS\Logs
2015-05-24 21:03:56 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 16:18:34 ----D---- C:\Downloads
2015-05-05 19:59:54 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-04-30 10:07:28 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem44.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-12-13 36608]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-05-05 65736]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-05-05 272248]
R0 hpdskflt;@oem15.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-08-10 29600]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-05-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-05-05 1047320]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-05-05 442264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2014-06-27 131856]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-05-05 29168]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-05-05 89944]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-05-05 137288]
R3 Accelerometer;@oem15.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-08-10 42400]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 BtAudioBusSrv;@oem10.inf,%SvcDesc%;IVT Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-08-08 48736]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 MEIx64;@oem42.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 netr28x;@oem23.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 rtbth;@oem22.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-24 43832]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2012-07-22 540160]
R3 SynTP;@oem41.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-24 448312]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 andnetadb;@oem61.inf,%androidusb.SvcDesc%;ADB Interface DriverNet; C:\WINDOWS\System32\Drivers\lgandnetadb.sys [2012-07-03 31744]
S3 AndNetDiag;@oem62.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 ANDNetModem;@oem64.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 andnetndis;@oem65.inf,%LgNdis.Service.DispName%;LGE AndroidNet NDIS Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\lgandnetndis64.sys [2012-07-04 93184]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 dg_ssudbus;@oem47.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;@oem25.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2013-06-04 146856]
S3 Dot4Print;@oem26.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2013-06-04 21928]
S3 Dot4Scan;@oem49.inf,%Dot4Scan_Name%;Scan Class Driver for IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2013-06-04 14760]
S3 dot4usb;@oem25.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2013-06-04 43944]
S3 EagleX64;EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys []
S3 IntcDAud;@oem39.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
S3 intelkmd;intelkmd; C:\WINDOWS\system32\DRIVERS\igdpmd64.sys [2012-08-24 9000256]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSP2STOR;@oem3.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-07-04 269968]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-24 41272]
S3 ssudmdm;@oem24.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem48.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 tapoas;@oem52.inf,%DeviceDescription%;TAP-Win32 Adapter OAS; C:\WINDOWS\system32\DRIVERS\tapoas.sys [2013-07-15 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-05-05 343336]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;@oem15.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-08-10 29600]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-07-09 35232]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-14 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-03-28 249648]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2012-07-22 321536]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-07-10 138752]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-08-19 1129760]
S2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-08-02 1544192]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
S2 tor;Tor Win32 Service; C:\Program Files (x86)\Tor\tor.exe --nt-service -ControlPort 9051 []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-26 268464]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-04-09 289256]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119676
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\Program Files\McAfee Security Scan
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511311164}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64
:services
BBSvc
SeaPort
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
RoboOndrash
- Návštěvník
- Příspěvky: 22
- Registrován: 05 bře 2015 12:25
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
Log z otm :
All processes killed
========== FILES ==========
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Program Files\McAfee Security Scan\3.8.150\sacoredata folder moved successfully.
C:\Program Files\McAfee Security Scan\3.8.150 folder moved successfully.
C:\Program Files\McAfee Security Scan folder moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk moved successfully.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511311164}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511311164}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service BBSvc stopped successfully!
Service BBSvc deleted successfully!
Service SeaPort stopped successfully!
Service SeaPort deleted successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default.migrated
User: Public
User: Silvia
->Temp folder emptied: 236987670 bytes
->Temporary Internet Files folder emptied: 116245661 bytes
->FireFox cache emptied: 118091694 bytes
->Google Chrome cache emptied: 349018755 bytes
->Apple Safari cache emptied: 141083648 bytes
->Flash cache emptied: 689 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1524902 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 149795150 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 1 061,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Default.migrated
User: Public
User: Silvia
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 05262015_224827
Files moved on Reboot...
C:\Users\Silvia\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Log z rsit :
Logfile of random's system information tool 1.10 (written by random/random)
Run by Silvia at 2015-05-26 22:54:49
Microsoft Windows 8.1
System drive C: has 132 GB (29%) free of 458 GB
Total RAM: 3986 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:54:57, on 26.5.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe
C:\Program Files\trend micro\Silvia.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {E4EF8A64-0A30-48F5-B3FE-5FDA978DA775} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [SnowWallpaper] C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem15.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 10301 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
atieclxx
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
dashost.exe {2d051a0e-c8d9-4013-aeda49dcba88ccfb}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
taskeng.exe {83A08FE8-8E31-42EC-B23C-AEAA58C7A5C7}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 584 588 596 65536 592
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
HydraDM64.exe -h:66038 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Users\Silvia\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\HPCeeScheduleForSilvia.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSilvia (null)
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-05 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-12-16 725768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-05 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-12-16 615688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-24 2916152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-07-22 1425408]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2012-08-24 398656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SnowWallpaper"=C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2014-04-17 1967616]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-05-15 2888384]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-08-02 363520]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-28 91432]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-07-09 580512]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-14 5515496]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-05-26 22:48:27 ----D---- C:\_OTM
2015-05-26 20:02:58 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-05-26 20:02:58 ----SD---- C:\WINDOWS\system32\GWX
2015-05-26 20:02:58 ----D---- C:\WINDOWS\Migration
2015-05-26 18:22:15 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-26 18:22:15 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-26 17:01:07 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-05-26 16:40:47 ----D---- C:\AdwCleaner
2015-05-26 16:40:47 ----A---- C:\AdwCleanerDebug.txt
2015-05-26 14:10:36 ----D---- C:\rsit
2015-05-26 14:10:36 ----D---- C:\Program Files\trend micro
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2015-05-25 17:13:41 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2015-05-25 17:13:33 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2015-05-25 17:13:05 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\system32\d3dx10.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2015-05-24 21:13:56 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-05-24 21:13:55 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-05-24 21:13:54 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-05-24 21:13:53 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-05-24 21:13:53 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\schannel.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2015-05-24 21:11:08 ----A---- C:\WINDOWS\system32\SRH.dll
2015-05-24 21:11:08 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\system32\dbgeng.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\system32\dbghelp.dll
2015-05-24 21:11:05 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-05-24 21:11:04 ----A---- C:\WINDOWS\system32\win32k.sys
2015-05-24 21:11:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\certcli.dll
2015-05-24 21:10:55 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2015-05-24 21:10:55 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\shimeng.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2015-05-24 21:10:53 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-05-24 21:10:53 ----A---- C:\WINDOWS\system32\services.exe
2015-05-24 21:10:52 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2015-05-24 21:10:50 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2015-05-24 21:10:50 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2015-05-24 21:10:49 ----A---- C:\WINDOWS\SYSWOW64\WPDShextAutoplay.exe
2015-05-24 21:10:49 ----A---- C:\WINDOWS\system32\WPDShextAutoplay.exe
2015-05-24 21:10:46 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2015-05-24 21:10:45 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2015-05-24 21:10:44 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-05-24 21:10:44 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-24 21:10:38 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-05-24 21:10:37 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-05-24 21:10:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-05-24 21:10:34 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-05-24 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\system32\wininet.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\jscript.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\inseng.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\ieui.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-05-24 21:07:27 ----A---- C:\WINDOWS\system32\InkEd.dll
2015-05-24 21:07:26 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2015-05-24 21:07:26 ----A---- C:\WINDOWS\system32\jnwmon.dll
2015-05-24 21:03:55 ----D---- C:\Program Files (x86)\Steam
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-05-09 02:29:59 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wups2.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wups.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-05-09 02:29:57 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-05-09 02:29:42 ----A---- C:\WINDOWS\system32\tdh.dll
2015-05-09 02:29:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-05-09 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\system32\sechost.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\typeperf.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\logman.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\tracerpt.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\logman.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\relog.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\diskperf.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\wow64.dll
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\typeperf.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\relog.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\diskperf.exe
2015-05-09 02:29:37 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-05-09 02:29:36 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-05-09 02:29:36 ----A---- C:\WINDOWS\system32\msctf.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\lsm.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-05-09 02:29:34 ----A---- C:\WINDOWS\system32\workerdd.dll
2015-05-09 02:29:31 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-05-09 02:29:30 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-05-09 02:21:34 ----A---- C:\WINDOWS\system32\invagent.dll
2015-05-09 02:21:34 ----A---- C:\WINDOWS\system32\devinv.dll
2015-05-09 02:21:33 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-05-05 15:08:28 ----D---- C:\Users\Silvia\AppData\Roaming\DropboxMaster
2015-05-05 15:04:14 ----D---- C:\Users\Silvia\AppData\Roaming\Dropbox
2015-05-05 12:29:52 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-05-05 12:29:40 ----A---- C:\WINDOWS\avastSS.scr
======List of files/folders modified in the last 1 month======
2015-05-26 22:54:29 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-05-26 22:54:24 ----D---- C:\WINDOWS\Temp
2015-05-26 22:53:56 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2015-05-26 22:49:47 ----D---- C:\Windows
2015-05-26 22:48:30 ----D---- C:\WINDOWS\Prefetch
2015-05-26 22:48:28 ----D---- C:\WINDOWS\Tasks
2015-05-26 22:48:28 ----D---- C:\Program Files
2015-05-26 22:00:00 ----D---- C:\WINDOWS\system32\sru
2015-05-26 20:22:01 ----D---- C:\WINDOWS\AppReadiness
2015-05-26 20:22:00 ----HD---- C:\Program Files\WindowsApps
2015-05-26 20:16:56 ----D---- C:\WINDOWS\system32\config
2015-05-26 20:07:48 ----D---- C:\WINDOWS\Microsoft.NET
2015-05-26 20:07:46 ----D---- C:\WINDOWS\WinSxS
2015-05-26 20:07:31 ----D---- C:\WINDOWS\SysWOW64
2015-05-26 20:06:28 ----D---- C:\WINDOWS\Inf
2015-05-26 20:05:53 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 20:05:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-26 20:03:11 ----RD---- C:\WINDOWS\System32
2015-05-26 20:03:11 ----D---- C:\WINDOWS\system32\sk-SK
2015-05-26 20:03:08 ----D---- C:\WINDOWS\system32\drivers
2015-05-26 20:03:07 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-05-26 20:03:01 ----RSD---- C:\WINDOWS\Fonts
2015-05-26 20:03:01 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2015-05-26 20:02:59 ----D---- C:\WINDOWS\system32\en-US
2015-05-26 20:02:59 ----D---- C:\WINDOWS\apppatch
2015-05-26 20:02:53 ----D---- C:\Program Files\Internet Explorer
2015-05-26 20:02:53 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-26 20:02:52 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-05-26 20:02:49 ----D---- C:\WINDOWS\system32\DriverStore
2015-05-26 19:50:08 ----D---- C:\WINDOWS\system32\NDF
2015-05-26 19:09:08 ----RSD---- C:\WINDOWS\assembly
2015-05-26 19:08:01 ----SHD---- C:\System Volume Information
2015-05-26 18:41:00 ----D---- C:\WINDOWS\CbsTemp
2015-05-26 18:19:24 ----D---- C:\WINDOWS\system32\MRT
2015-05-26 17:45:54 ----SHD---- C:\WINDOWS\Installer
2015-05-26 17:41:43 ----D---- C:\WINDOWS\system32\catroot2
2015-05-26 17:40:07 ----D---- C:\Program Files\Windows Journal
2015-05-26 17:39:44 ----SD---- C:\WINDOWS\system32\CompatTel
2015-05-26 17:39:44 ----D---- C:\WINDOWS\system32\appraiser
2015-05-26 17:35:38 ----D---- C:\peter
2015-05-26 16:42:59 ----D---- C:\WINDOWS\system32\Tasks
2015-05-26 16:42:59 ----D---- C:\Program Files (x86)
2015-05-26 14:06:48 ----D---- C:\Users\Silvia\AppData\Roaming\vlc
2015-05-25 19:14:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-25 19:01:20 ----D---- C:\Program Files (x86)\Battle.net
2015-05-25 18:55:38 ----D---- C:\Program Files (x86)\Hearthstone
2015-05-25 17:11:21 ----D---- C:\WINDOWS\Logs
2015-05-24 21:03:56 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 16:18:34 ----D---- C:\Downloads
2015-05-05 19:59:54 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-04-30 10:07:28 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem44.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-12-13 36608]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-05-05 65736]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-05-05 272248]
R0 hpdskflt;@oem15.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-08-10 29600]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-05-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-05-05 1047320]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-05-05 442264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2014-06-27 131856]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-05-05 29168]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-05-05 89944]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-05-05 137288]
R3 Accelerometer;@oem15.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-08-10 42400]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 BtAudioBusSrv;@oem10.inf,%SvcDesc%;IVT Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-08-08 48736]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 MEIx64;@oem42.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 netr28x;@oem23.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 rtbth;@oem22.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-24 43832]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2012-07-22 540160]
R3 SynTP;@oem41.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-24 448312]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 andnetadb;@oem61.inf,%androidusb.SvcDesc%;ADB Interface DriverNet; C:\WINDOWS\System32\Drivers\lgandnetadb.sys [2012-07-03 31744]
S3 AndNetDiag;@oem62.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 ANDNetModem;@oem64.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 andnetndis;@oem65.inf,%LgNdis.Service.DispName%;LGE AndroidNet NDIS Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\lgandnetndis64.sys [2012-07-04 93184]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 dg_ssudbus;@oem47.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;@oem25.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2013-06-04 146856]
S3 Dot4Print;@oem26.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2013-06-04 21928]
S3 Dot4Scan;@oem49.inf,%Dot4Scan_Name%;Scan Class Driver for IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2013-06-04 14760]
S3 dot4usb;@oem25.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2013-06-04 43944]
S3 EagleX64;EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys []
S3 IntcDAud;@oem39.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
S3 intelkmd;intelkmd; C:\WINDOWS\system32\DRIVERS\igdpmd64.sys [2012-08-24 9000256]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSP2STOR;@oem3.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-07-04 269968]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-24 41272]
S3 ssudmdm;@oem24.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem48.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 tapoas;@oem52.inf,%DeviceDescription%;TAP-Win32 Adapter OAS; C:\WINDOWS\system32\DRIVERS\tapoas.sys [2013-07-15 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-05-05 343336]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;@oem15.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-08-10 29600]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-07-09 35232]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-14 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2012-07-22 321536]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-07-10 138752]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-08-19 1129760]
S2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-08-02 1544192]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S2 tor;Tor Win32 Service; C:\Program Files (x86)\Tor\tor.exe --nt-service -ControlPort 9051 []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-26 268464]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe []
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
All processes killed
========== FILES ==========
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Program Files\McAfee Security Scan\3.8.150\sacoredata folder moved successfully.
C:\Program Files\McAfee Security Scan\3.8.150 folder moved successfully.
C:\Program Files\McAfee Security Scan folder moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk moved successfully.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511311164}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110511311164}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service BBSvc stopped successfully!
Service BBSvc deleted successfully!
Service SeaPort stopped successfully!
Service SeaPort deleted successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default.migrated
User: Public
User: Silvia
->Temp folder emptied: 236987670 bytes
->Temporary Internet Files folder emptied: 116245661 bytes
->FireFox cache emptied: 118091694 bytes
->Google Chrome cache emptied: 349018755 bytes
->Apple Safari cache emptied: 141083648 bytes
->Flash cache emptied: 689 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 1524902 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 149795150 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 1 061,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Default.migrated
User: Public
User: Silvia
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 05262015_224827
Files moved on Reboot...
C:\Users\Silvia\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Log z rsit :
Logfile of random's system information tool 1.10 (written by random/random)
Run by Silvia at 2015-05-26 22:54:49
Microsoft Windows 8.1
System drive C: has 132 GB (29%) free of 458 GB
Total RAM: 3986 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:54:57, on 26.5.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe
C:\Program Files\trend micro\Silvia.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {E4EF8A64-0A30-48F5-B3FE-5FDA978DA775} - (no file)
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [SnowWallpaper] C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem15.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10129 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Tor Win32 Service (tor) - Unknown owner - C:\Program Files (x86)\Tor\tor.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 10301 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
atieclxx
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
dashost.exe {2d051a0e-c8d9-4013-aeda49dcba88ccfb}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
taskeng.exe {83A08FE8-8E31-42EC-B23C-AEAA58C7A5C7}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 584 588 596 65536 592
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
HydraDM64.exe -h:66038 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Users\Silvia\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\HPCeeScheduleForSilvia.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSilvia (null)
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-05 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-12-16 725768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-05 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4EF8A64-0A30-48F5-B3FE-5FDA978DA775}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-12-16 615688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-24 2916152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-07-22 1425408]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2012-08-24 398656]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SnowWallpaper"=C:\Program Files (x86)\Artdocks Software\Animated Snow Desktop Wallpaper\SnowWallpaper.exe []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2014-04-17 1967616]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-05-15 2888384]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-08-02 363520]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-28 91432]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-07-09 580512]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2011-12-09 74752]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-05-14 5515496]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2012-08-24 441856]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-05-26 22:48:27 ----D---- C:\_OTM
2015-05-26 20:02:58 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-05-26 20:02:58 ----SD---- C:\WINDOWS\system32\GWX
2015-05-26 20:02:58 ----D---- C:\WINDOWS\Migration
2015-05-26 18:22:15 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-26 18:22:15 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-26 17:01:07 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-05-26 16:40:47 ----D---- C:\AdwCleaner
2015-05-26 16:40:47 ----A---- C:\AdwCleanerDebug.txt
2015-05-26 14:10:36 ----D---- C:\rsit
2015-05-26 14:10:36 ----D---- C:\Program Files\trend micro
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2015-05-25 17:14:00 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2015-05-25 17:13:58 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2015-05-25 17:13:55 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2015-05-25 17:13:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2015-05-25 17:13:52 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2015-05-25 17:13:51 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2015-05-25 17:13:50 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2015-05-25 17:13:48 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2015-05-25 17:13:45 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2015-05-25 17:13:43 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2015-05-25 17:13:41 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2015-05-25 17:13:40 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2015-05-25 17:13:38 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2015-05-25 17:13:36 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2015-05-25 17:13:33 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2015-05-25 17:13:32 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2015-05-25 17:13:30 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2015-05-25 17:13:28 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2015-05-25 17:13:27 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2015-05-25 17:13:26 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2015-05-25 17:13:25 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2015-05-25 17:13:24 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2015-05-25 17:13:22 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2015-05-25 17:13:19 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2015-05-25 17:13:15 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2015-05-25 17:13:13 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2015-05-25 17:13:10 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2015-05-25 17:13:05 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2015-05-25 17:13:01 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2015-05-25 17:12:59 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2015-05-25 17:12:58 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2015-05-25 17:12:55 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2015-05-25 17:12:52 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2015-05-25 17:12:51 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2015-05-25 17:12:49 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2015-05-25 17:12:47 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2015-05-25 17:12:46 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2015-05-25 17:12:44 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2015-05-25 17:12:41 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2015-05-25 17:12:39 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2015-05-25 17:12:35 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2015-05-25 17:12:33 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2015-05-25 17:12:32 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2015-05-25 17:12:30 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2015-05-25 17:12:29 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2015-05-25 17:12:28 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2015-05-25 17:12:22 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2015-05-25 17:12:21 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2015-05-25 17:12:19 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2015-05-25 17:12:15 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2015-05-25 17:12:13 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2015-05-25 17:12:12 ----A---- C:\WINDOWS\system32\d3dx10.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2015-05-25 17:12:09 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2015-05-25 17:11:48 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2015-05-25 17:11:46 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2015-05-25 17:11:36 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2015-05-25 17:11:35 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2015-05-25 17:11:33 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2015-05-25 17:10:46 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2015-05-25 17:10:42 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2015-05-25 17:10:41 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2015-05-25 17:10:39 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2015-05-25 17:10:38 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2015-05-25 17:10:37 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2015-05-25 17:10:35 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2015-05-25 17:10:32 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2015-05-24 21:13:56 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-05-24 21:13:55 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-05-24 21:13:54 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-05-24 21:13:53 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-05-24 21:13:53 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\schannel.dll
2015-05-24 21:11:09 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2015-05-24 21:11:08 ----A---- C:\WINDOWS\system32\SRH.dll
2015-05-24 21:11:08 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2015-05-24 21:11:07 ----A---- C:\WINDOWS\system32\dbgeng.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-05-24 21:11:06 ----A---- C:\WINDOWS\system32\dbghelp.dll
2015-05-24 21:11:05 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-05-24 21:11:04 ----A---- C:\WINDOWS\system32\win32k.sys
2015-05-24 21:11:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-05-24 21:10:59 ----A---- C:\WINDOWS\system32\certcli.dll
2015-05-24 21:10:55 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2015-05-24 21:10:55 ----A---- C:\WINDOWS\system32\apphelp.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\shimeng.dll
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\sdbinst.exe
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-05-24 21:10:54 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2015-05-24 21:10:53 ----A---- C:\WINDOWS\system32\wpdshext.dll
2015-05-24 21:10:53 ----A---- C:\WINDOWS\system32\services.exe
2015-05-24 21:10:52 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2015-05-24 21:10:50 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2015-05-24 21:10:50 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2015-05-24 21:10:49 ----A---- C:\WINDOWS\SYSWOW64\WPDShextAutoplay.exe
2015-05-24 21:10:49 ----A---- C:\WINDOWS\system32\WPDShextAutoplay.exe
2015-05-24 21:10:46 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2015-05-24 21:10:45 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2015-05-24 21:10:44 ----A---- C:\WINDOWS\SYSWOW64\PhotoMetadataHandler.dll
2015-05-24 21:10:44 ----A---- C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-24 21:10:38 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-05-24 21:10:37 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-05-24 21:10:35 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-05-24 21:10:34 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-05-24 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\system32\wininet.dll
2015-05-24 21:10:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\jscript.dll
2015-05-24 21:10:31 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-05-24 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\inseng.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\ieui.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-05-24 21:10:29 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-05-24 21:10:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-05-24 21:07:27 ----A---- C:\WINDOWS\system32\InkEd.dll
2015-05-24 21:07:26 ----A---- C:\WINDOWS\SYSWOW64\InkEd.dll
2015-05-24 21:07:26 ----A---- C:\WINDOWS\system32\jnwmon.dll
2015-05-24 21:03:55 ----D---- C:\Program Files (x86)\Steam
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-05-09 02:30:00 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-05-09 02:29:59 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wups2.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wups.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-05-09 02:29:58 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-05-09 02:29:57 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-05-09 02:29:42 ----A---- C:\WINDOWS\system32\tdh.dll
2015-05-09 02:29:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-05-09 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\system32\sechost.dll
2015-05-09 02:29:41 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\typeperf.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\SYSWOW64\logman.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\tracerpt.exe
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-05-09 02:29:40 ----A---- C:\WINDOWS\system32\logman.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\relog.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\SYSWOW64\diskperf.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\wow64.dll
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\typeperf.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\relog.exe
2015-05-09 02:29:39 ----A---- C:\WINDOWS\system32\diskperf.exe
2015-05-09 02:29:37 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-05-09 02:29:36 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-05-09 02:29:36 ----A---- C:\WINDOWS\system32\msctf.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\lsm.dll
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-05-09 02:29:35 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-05-09 02:29:34 ----A---- C:\WINDOWS\system32\workerdd.dll
2015-05-09 02:29:31 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-05-09 02:29:30 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-05-09 02:21:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-05-09 02:21:34 ----A---- C:\WINDOWS\system32\invagent.dll
2015-05-09 02:21:34 ----A---- C:\WINDOWS\system32\devinv.dll
2015-05-09 02:21:33 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-05-05 15:08:28 ----D---- C:\Users\Silvia\AppData\Roaming\DropboxMaster
2015-05-05 15:04:14 ----D---- C:\Users\Silvia\AppData\Roaming\Dropbox
2015-05-05 12:29:52 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-05-05 12:29:40 ----A---- C:\WINDOWS\avastSS.scr
======List of files/folders modified in the last 1 month======
2015-05-26 22:54:29 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-05-26 22:54:24 ----D---- C:\WINDOWS\Temp
2015-05-26 22:53:56 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2015-05-26 22:49:47 ----D---- C:\Windows
2015-05-26 22:48:30 ----D---- C:\WINDOWS\Prefetch
2015-05-26 22:48:28 ----D---- C:\WINDOWS\Tasks
2015-05-26 22:48:28 ----D---- C:\Program Files
2015-05-26 22:00:00 ----D---- C:\WINDOWS\system32\sru
2015-05-26 20:22:01 ----D---- C:\WINDOWS\AppReadiness
2015-05-26 20:22:00 ----HD---- C:\Program Files\WindowsApps
2015-05-26 20:16:56 ----D---- C:\WINDOWS\system32\config
2015-05-26 20:07:48 ----D---- C:\WINDOWS\Microsoft.NET
2015-05-26 20:07:46 ----D---- C:\WINDOWS\WinSxS
2015-05-26 20:07:31 ----D---- C:\WINDOWS\SysWOW64
2015-05-26 20:06:28 ----D---- C:\WINDOWS\Inf
2015-05-26 20:05:53 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-26 20:05:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-26 20:03:11 ----RD---- C:\WINDOWS\System32
2015-05-26 20:03:11 ----D---- C:\WINDOWS\system32\sk-SK
2015-05-26 20:03:08 ----D---- C:\WINDOWS\system32\drivers
2015-05-26 20:03:07 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-05-26 20:03:01 ----RSD---- C:\WINDOWS\Fonts
2015-05-26 20:03:01 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2015-05-26 20:02:59 ----D---- C:\WINDOWS\system32\en-US
2015-05-26 20:02:59 ----D---- C:\WINDOWS\apppatch
2015-05-26 20:02:53 ----D---- C:\Program Files\Internet Explorer
2015-05-26 20:02:53 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-26 20:02:52 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-05-26 20:02:49 ----D---- C:\WINDOWS\system32\DriverStore
2015-05-26 19:50:08 ----D---- C:\WINDOWS\system32\NDF
2015-05-26 19:09:08 ----RSD---- C:\WINDOWS\assembly
2015-05-26 19:08:01 ----SHD---- C:\System Volume Information
2015-05-26 18:41:00 ----D---- C:\WINDOWS\CbsTemp
2015-05-26 18:19:24 ----D---- C:\WINDOWS\system32\MRT
2015-05-26 17:45:54 ----SHD---- C:\WINDOWS\Installer
2015-05-26 17:41:43 ----D---- C:\WINDOWS\system32\catroot2
2015-05-26 17:40:07 ----D---- C:\Program Files\Windows Journal
2015-05-26 17:39:44 ----SD---- C:\WINDOWS\system32\CompatTel
2015-05-26 17:39:44 ----D---- C:\WINDOWS\system32\appraiser
2015-05-26 17:35:38 ----D---- C:\peter
2015-05-26 16:42:59 ----D---- C:\WINDOWS\system32\Tasks
2015-05-26 16:42:59 ----D---- C:\Program Files (x86)
2015-05-26 14:06:48 ----D---- C:\Users\Silvia\AppData\Roaming\vlc
2015-05-25 19:14:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-25 19:01:20 ----D---- C:\Program Files (x86)\Battle.net
2015-05-25 18:55:38 ----D---- C:\Program Files (x86)\Hearthstone
2015-05-25 17:11:21 ----D---- C:\WINDOWS\Logs
2015-05-24 21:03:56 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 16:18:34 ----D---- C:\Downloads
2015-05-05 19:59:54 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-04-30 10:07:28 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem44.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-12-13 36608]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-05-05 65736]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-05-05 272248]
R0 hpdskflt;@oem15.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-08-10 29600]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-31 645952]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-05-05 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-05-05 1047320]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-05-05 442264]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2014-06-27 131856]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-05-05 29168]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-05-05 89944]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-05-05 137288]
R3 Accelerometer;@oem15.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-08-10 42400]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-07-21 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-07-21 626688]
R3 BtAudioBusSrv;@oem10.inf,%SvcDesc%;IVT Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-08-08 48736]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-08-24 9000256]
R3 MEIx64;@oem42.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 netr28x;@oem23.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 rtbth;@oem22.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-24 43832]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10329; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2012-07-22 540160]
R3 SynTP;@oem41.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-24 448312]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 andnetadb;@oem61.inf,%androidusb.SvcDesc%;ADB Interface DriverNet; C:\WINDOWS\System32\Drivers\lgandnetadb.sys [2012-07-03 31744]
S3 AndNetDiag;@oem62.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 ANDNetModem;@oem64.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 andnetndis;@oem65.inf,%LgNdis.Service.DispName%;LGE AndroidNet NDIS Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\lgandnetndis64.sys [2012-07-04 93184]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 dg_ssudbus;@oem47.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;@oem25.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2013-06-04 146856]
S3 Dot4Print;@oem26.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2013-06-04 21928]
S3 Dot4Scan;@oem49.inf,%Dot4Scan_Name%;Scan Class Driver for IEEE-1284.4; C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys [2013-06-04 14760]
S3 dot4usb;@oem25.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2013-06-04 43944]
S3 EagleX64;EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys []
S3 IntcDAud;@oem39.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
S3 intelkmd;intelkmd; C:\WINDOWS\system32\DRIVERS\igdpmd64.sys [2012-08-24 9000256]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
S3 RSP2STOR;@oem3.inf,%Rts5229%;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2012-07-04 269968]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-24 41272]
S3 ssudmdm;@oem24.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;@oem48.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 tapoas;@oem52.inf,%DeviceDescription%;TAP-Win32 Adapter OAS; C:\WINDOWS\system32\DRIVERS\tapoas.sys [2013-07-15 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-07-21 239616]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-05-05 343336]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;@oem15.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-08-10 29600]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-07-09 35232]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-07-14 2451456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2013-08-22 37768]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10129; C:\Program Files\IDT\WDM\STacSV64.exe [2012-07-22 321536]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-07-10 138752]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-08-19 1129760]
S2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-08-02 1544192]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S2 tor;Tor Win32 Service; C:\Program Files (x86)\Tor\tor.exe --nt-service -ControlPort 9051 []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-26 268464]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-16 50864]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-12 107848]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe []
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119676
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
Dvouklikem na soubor C:\Program Files\trend micro\Silvia.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.R3 - Default URLSearchHook is missing
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
RoboOndrash
- Návštěvník
- Příspěvky: 22
- Registrován: 05 bře 2015 12:25
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
Ok vykonané to je všetko ? 
-
Rudy
- Site Admin
- Příspěvky: 119676
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Počítač sám vytvára sietové prepojenia zo školskou sieťo
Pokud problém pominul, je to vše.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?