Ahoj.. Mohl bych poprosit o preventivní zkouknutí logu z RSIT? Děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Beli at 2015-11-23 12:35:05
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 134 GB (26%) free of 512 GB
Total RAM: 4078 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:35:18, on 23.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Beli.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
O4 - HKLM\..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60
O4 - HKCU\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STAR
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_A4F7982C1CFF36406A53F2BF5767CEC6] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Toshiba Places Icon Utility.lnk = ?
O8 - Extra context menu item: Přidat do aplikace TOSHIBA Bulletin Board - res://C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-229 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-228 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\national instruments\shared\mdns responder\nimdnsnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {14711E5F-189F-4D07-9D41-9EB57F547DD8} (Media Control) - http://prikopy.alesovka.net/Option/Media.CAB
O16 - DPF: {23EBBA97-9B3C-4FCA-872B-78DA21068373} (SStreamVideo Control) - http://192.168.1.240/SStreamVideo.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fb_inet_server.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Sentinel Local License Manager (hasplms) - Unknown owner - C:\windows\system32\hasplms.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WorkshopDBService - Acresso - C:\PROGRA~2\VIVIDW~1\WORKSH~1.EXE
--
End of file - 13334 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
winlogon.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\windows\system32\nvvsvc.exe -session -first
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 35754128
\??\C:\windows\system32\conhost.exe "29892924912196526572801704081168160686-1278603843-1486896590-8085473941624392490
C:\windows\System32\spoolsv.exe
"taskhost.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe"
"C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe"
"C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe"
"C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe"
crypserv.exe
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\TOSHIBA\TECO\Teco.exe" /r
"C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fb_inet_server.exe" -s DefaultInstance
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Windows\WindowsMobile\wmdcBase.exe"
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe" /STAR
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe"
C:\windows\system32\hasplms.exe -run
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe"
"C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
C:\windows\system32\TODDSrv.exe
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2952.0.1228050794\356050097" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,8,12,20,45,55 --disable-accelerated-video-decode --gpu-vendor-id=0x10de --gpu-device-id=0x1050 --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.6857 --ignored=" --type=renderer " /prefetch:822062411
C:\PROGRA~2\VIVIDW~1\WORKSH~1.EXE -zglaxservice WorkshopDBService
WLIDSvcM.exe 3592
"C:\Program Files (x86)\Vivid WorkshopData ATI\jre\bin\java.exe" -Xrs -classpath "C:\Program Files (x86)\Vivid WorkshopData ATI\hsqldb.jar;C:\Program Files (x86)\Vivid WorkshopData ATI\lax.jar;" com.zerog.lax.LAX "C:/Program Files (x86)/Vivid WorkshopData ATI/WorkshopDBServer.lax" "C:/windows/TEMP/laxF94C.tmp"
\??\C:\windows\system32\conhost.exe "-1025735328139725000885809864818828660031038974720650720680-670086624-419270058
"C:\Program Files\TOSHIBA\TECO\TecoService.exe"
taskeng.exe {643D1C5F-3433-4256-80E6-DBD967528B0D}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/StableHQPFrequencyBugFix_PrePeriod_4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/group_01/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="2952.1.1195547347\1411772185" --font-cache-shared-handle=1832 /prefetch:673131151
"C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe"
C:\windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe"
C:\windows\servicing\TrustedInstaller.exe
C:\windows\System32\alg.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosA2dp.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHid.exe"
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHsp.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe"
"C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StableHQPFrequencyBugFix_PrePeriod_4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/group_01/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="2952.18.1490608935\6335451" --font-cache-shared-handle=3724 /prefetch:673131151
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\system32\taskmgr.exe" /4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StableHQPFrequencyBugFix_PrePeriod_4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/group_01/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="2952.33.1196045114\1133201791" --font-cache-shared-handle=4664 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StableHQPFrequencyBugFix_PrePeriod_4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/group_01/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="2952.36.1647622471\1963317189" --font-cache-shared-handle=7520 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StableHQPFrequencyBugFix_PrePeriod_4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/group_01/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="2952.40.750746798\1634102335" --font-cache-shared-handle=5492 /prefetch:673131151
"C:\Program Files\CCleaner\CCleaner64.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Users\Beli\Downloads\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /c�
C:\windows\tasks\GoogleUpdateTaskMachineCore1d04375b58a1884.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /c�
C:\windows\tasks\GoogleUpdateTaskMachineCore1d0915b5802482c.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /c�
C:\windows\tasks\GoogleUpdateTaskMachineCore1d0e3707a3ffae7.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /c�
C:\windows\tasks\GoogleUpdateTaskMachineCore1d0f2026b445d28.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /c�
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /ua /installsource scheduler�
C:\windows\tasks\GoogleUpdateTaskMachineUA1d04375b5daf8d3.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /ua /installsource scheduler�
C:\windows\tasks\GoogleUpdateTaskMachineUA1d0e3707a8938ee.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /ua /installsource scheduler�
C:\windows\tasks\GoogleUpdateTaskMachineUA1d0f2026b85857e.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe� /ua /installsource scheduler�
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-25 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-25 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-08-03 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2011-01-20 1581376]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-25 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-20 988480]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-25 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Toshiba TEMPRO"=C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [2011-02-10 1546720]
"TosNC"=C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2011-03-03 597928]
"TosReelTimeMonitor"=C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2010-12-14 38304]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2011-03-02 566696]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2010-09-25 296824]
"TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2010-12-15 973176]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2010-12-14 316032]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-02-03 2679592]
"Teco"=C:\Program Files\TOSHIBA\TECO\Teco.exe [2011-03-02 1520552]
"TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2010-12-08 710040]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2011-07-01 712096]
"TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376]
"Toshiba Registration"=C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [2011-08-03 150992]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-02-24 5581888]
"Windows Mobile-based device management"=C:\windows\WindowsMobile\wmdcBase.exe [2007-05-31 660360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TOPI.EXE"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [2011-05-16 846936]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_A4F7982C1CFF36406A53F2BF5767CEC6"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-11-07 811848]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2011-08-03 39408]
"AdobeBridge"= []
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-06-01 8358680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-06-01 8358680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDD Regenerator]
C:\Program Files (x86)\HDD Regenerator\Shell.exe /0 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2011-06-29 1409424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NI Update Service]
C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [2013-05-28 857888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NI Error Reporting.lnk]
C:\PROGRA~2\NATION~1\Shared\NIERRO~1\NIERSE~1.EXE [2013-06-07 663896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"TSleepSrv"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [2010-06-04 252792]
"ToshibaServiceStation"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2010-11-29 1294712]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
Toshiba Places Icon Utility.lnk - C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-23 12:35:05 ----D---- C:\Program Files\trend micro
2015-11-23 12:35:04 ----D---- C:\rsit
2015-11-20 12:43:47 ----D---- C:\SnapshotFolder
2015-11-14 07:58:08 ----SHD---- C:\Config.Msi
2015-11-13 22:06:14 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2015-11-13 22:06:14 ----A---- C:\windows\SYSWOW64\wups.dll
2015-11-13 22:06:14 ----A---- C:\windows\SYSWOW64\wudriver.dll
2015-11-13 22:06:14 ----A---- C:\windows\SYSWOW64\wuapp.exe
2015-11-13 22:06:14 ----A---- C:\windows\SYSWOW64\wuapi.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\wuwebv.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\wups2.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\wups.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\wudriver.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\wucltux.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\wuaueng.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\wuauclt.exe
2015-11-13 22:06:14 ----A---- C:\windows\system32\wuapp.exe
2015-11-13 22:06:14 ----A---- C:\windows\system32\wuapi.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2015-11-13 22:06:14 ----A---- C:\windows\system32\WinSetupUI.dll
2015-11-13 22:04:36 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2015-11-13 22:04:35 ----A---- C:\windows\system32\ieetwcollector.exe
2015-11-13 22:04:34 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-11-13 22:04:34 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-11-13 22:04:34 ----A---- C:\windows\SYSWOW64\occache.dll
2015-11-13 22:04:34 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-11-13 22:04:34 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-11-13 22:04:34 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-11-13 22:04:34 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-11-13 22:04:34 ----A---- C:\windows\system32\iernonce.dll
2015-11-13 22:04:34 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-11-13 22:04:34 ----A---- C:\windows\system32\ie4uinit.exe
2015-11-13 22:04:33 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-11-13 22:04:33 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-11-13 22:04:33 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-11-13 22:04:33 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-11-13 22:04:32 ----A---- C:\windows\SYSWOW64\iesetup.dll
2015-11-13 22:04:32 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-11-13 22:04:32 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-11-13 22:04:32 ----A---- C:\windows\system32\urlmon.dll
2015-11-13 22:04:32 ----A---- C:\windows\system32\occache.dll
2015-11-13 22:04:32 ----A---- C:\windows\system32\iedkcs32.dll
2015-11-13 22:04:31 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-11-13 22:04:31 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2015-11-13 22:04:31 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-11-13 22:04:31 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-11-13 22:04:31 ----A---- C:\windows\SYSWOW64\iernonce.dll
2015-11-13 22:04:31 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-11-13 22:04:31 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-11-13 22:04:31 ----A---- C:\windows\system32\msfeeds.dll
2015-11-13 22:04:31 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-11-13 22:04:31 ----A---- C:\windows\system32\dxtrans.dll
2015-11-13 22:04:30 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-11-13 22:04:30 ----A---- C:\windows\system32\iesetup.dll
2015-11-13 22:04:30 ----A---- C:\windows\system32\ieapfltr.dll
2015-11-13 22:04:18 ----A---- C:\windows\system32\iertutil.dll
2015-11-13 22:04:17 ----A---- C:\windows\SYSWOW64\webcheck.dll
2015-11-13 22:04:17 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2015-11-13 22:04:17 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-11-13 22:04:17 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-11-13 22:04:17 ----A---- C:\windows\system32\vbscript.dll
2015-11-13 22:04:16 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-11-13 22:04:16 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-11-13 22:04:16 ----A---- C:\windows\system32\jsproxy.dll
2015-11-13 22:04:16 ----A---- C:\windows\system32\dxtmsft.dll
2015-11-13 22:04:15 ----A---- C:\windows\system32\ieui.dll
2015-11-13 22:04:15 ----A---- C:\windows\system32\ieframe.dll
2015-11-13 22:04:14 ----A---- C:\windows\system32\webcheck.dll
2015-11-13 22:04:14 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-11-13 22:04:14 ----A---- C:\windows\system32\mshtmled.dll
2015-11-13 22:04:14 ----A---- C:\windows\system32\jscript.dll
2015-11-13 22:04:14 ----A---- C:\windows\system32\ieUnatt.exe
2015-11-13 22:04:13 ----A---- C:\windows\system32\wininet.dll
2015-11-13 22:04:13 ----A---- C:\windows\system32\jscript9diag.dll
2015-11-13 22:04:13 ----A---- C:\windows\system32\jscript9.dll
2015-11-13 22:04:12 ----A---- C:\windows\system32\msrating.dll
2015-11-13 22:04:12 ----A---- C:\windows\system32\MshtmlDac.dll
2015-11-13 22:04:11 ----A---- C:\windows\system32\mshtml.dll
2015-11-13 22:04:02 ----A---- C:\windows\system32\ntoskrnl.exe
2015-11-13 22:04:01 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-11-13 22:04:01 ----A---- C:\windows\system32\schannel.dll
2015-11-13 22:04:01 ----A---- C:\windows\system32\kerberos.dll
2015-11-13 22:03:58 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-11-13 22:03:58 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-11-13 22:03:58 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-11-13 22:03:58 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2015-11-13 22:03:58 ----A---- C:\windows\system32\ncrypt.dll
2015-11-13 22:03:58 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-11-13 22:03:58 ----A---- C:\windows\system32\drivers\cng.sys
2015-11-13 22:03:57 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-11-13 22:03:57 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2015-11-13 22:03:57 ----A---- C:\windows\system32\lsasrv.dll
2015-11-13 22:03:57 ----A---- C:\windows\system32\kernel32.dll
2015-11-13 22:03:57 ----A---- C:\windows\system32\bcryptprimitives.dll
2015-11-13 22:03:56 ----A---- C:\windows\system32\ntdll.dll
2015-11-13 22:03:54 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-11-13 22:03:52 ----A---- C:\windows\system32\wow64.dll
2015-11-13 22:03:52 ----A---- C:\windows\system32\srcore.dll
2015-11-13 22:03:52 ----A---- C:\windows\system32\rpcrt4.dll
2015-11-13 22:03:52 ----A---- C:\windows\system32\KernelBase.dll
2015-11-13 22:03:52 ----A---- C:\windows\system32\conhost.exe
2015-11-13 22:03:51 ----A---- C:\windows\system32\winsrv.dll
2015-11-13 22:03:51 ----A---- C:\windows\system32\rstrui.exe
2015-11-13 22:03:50 ----A---- C:\windows\SYSWOW64\wdigest.dll
2015-11-13 22:03:50 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2015-11-13 22:03:50 ----A---- C:\windows\SYSWOW64\setup16.exe
2015-11-13 22:03:50 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2015-11-13 22:03:50 ----A---- C:\windows\SYSWOW64\auditpol.exe
2015-11-13 22:03:50 ----A---- C:\windows\system32\wdigest.dll
2015-11-13 22:03:50 ----A---- C:\windows\system32\TSpkg.dll
2015-11-13 22:03:50 ----A---- C:\windows\system32\sspicli.dll
2015-11-13 22:03:50 ----A---- C:\windows\system32\smss.exe
2015-11-13 22:03:50 ----A---- C:\windows\system32\msv1_0.dll
2015-11-13 22:03:50 ----A---- C:\windows\system32\lsass.exe
2015-11-13 22:03:50 ----A---- C:\windows\system32\auditpol.exe
2015-11-13 22:03:48 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-11-13 22:03:48 ----A---- C:\windows\SYSWOW64\secur32.dll
2015-11-13 22:03:48 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2015-11-13 22:03:48 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2015-11-13 22:03:48 ----A---- C:\windows\SYSWOW64\credssp.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\wow64win.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\wow64cpu.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\sspisrv.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\srclient.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\secur32.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\ntvdm64.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\csrsrv.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\cryptbase.dll
2015-11-13 22:03:48 ----A---- C:\windows\system32\credssp.dll
2015-11-13 22:03:47 ----A---- C:\windows\SYSWOW64\sspicli.dll
2015-11-13 22:03:47 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2015-11-13 22:03:47 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2015-11-13 22:03:47 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2015-11-13 22:03:47 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2015-11-13 22:03:46 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2015-11-13 22:03:45 ----A---- C:\windows\SYSWOW64\kernel32.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-13 22:03:44 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-13 22:03:44 ----A---- C:\windows\SYSWOW64\wow32.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-13 22:03:43 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-13 22:03:43 ----A---- C:\windows\SYSWOW64\instnm.exe
2015-11-13 22:03:43 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2015-11-13 22:03:43 ----A---- C:\windows\system32\apisetschema.dll
2015-11-13 22:03:42 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-13 22:03:42 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-13 22:03:42 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-13 22:03:42 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-13 22:03:42 ----A---- C:\windows\SYSWOW64\user.exe
2015-11-13 22:03:42 ----A---- C:\windows\SYSWOW64\msobjs.dll
2015-11-13 22:03:42 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-11-13 22:03:42 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-11-13 22:03:42 ----A---- C:\windows\system32\msobjs.dll
2015-11-13 22:03:42 ----A---- C:\windows\system32\msaudite.dll
2015-11-13 22:03:42 ----A---- C:\windows\system32\adtschema.dll
2015-11-13 22:02:50 ----A---- C:\windows\system32\drivers\tdx.sys
2015-11-13 22:02:50 ----A---- C:\windows\system32\drivers\afd.sys
2015-11-13 22:02:48 ----A---- C:\windows\SYSWOW64\apphelp.dll
2015-11-13 22:02:47 ----A---- C:\windows\SYSWOW64\shimeng.dll
2015-11-13 22:02:47 ----A---- C:\windows\SYSWOW64\sdbinst.exe
2015-11-13 22:02:47 ----A---- C:\windows\system32\shimeng.dll
2015-11-13 22:02:47 ----A---- C:\windows\system32\sdbinst.exe
2015-11-13 22:02:47 ----A---- C:\windows\system32\apphelp.dll
2015-11-13 22:02:47 ----A---- C:\windows\system32\aelupsvc.dll
2015-11-13 22:02:45 ----A---- C:\windows\system32\win32k.sys
2015-11-13 22:02:41 ----A---- C:\windows\system32\drivers\ndis.sys
2015-11-13 22:02:36 ----A---- C:\windows\SYSWOW64\InkEd.dll
2015-11-13 22:02:36 ----A---- C:\windows\system32\InkEd.dll
2015-11-13 22:02:35 ----A---- C:\windows\system32\jnwmon.dll
2015-11-09 16:11:35 ----A---- C:\windows\system32\hasplms.exe
2015-11-09 16:11:35 ----A---- C:\windows\system32\drivers\aksfridge.sys
2015-11-09 16:11:35 ----A---- C:\windows\system32\aksllmtp.exe
2015-11-09 16:11:01 ----D---- C:\MULTIKEY64
2015-11-09 16:10:21 ----A---- C:\windows\system32\drivers\akshhl.sys
2015-11-09 16:10:21 ----A---- C:\windows\system32\aksusb4.dll
2015-11-09 16:10:21 ----A---- C:\windows\system32\akshsp52.dll
2015-11-09 16:10:21 ----A---- C:\windows\system32\akshhl30.dll
2015-11-09 12:37:12 ----D---- C:\ETKA
2015-11-09 12:28:46 ----A---- C:\windows\SYSWOW64\hlvdd.dll
2015-11-09 12:28:01 ----A---- C:\windows\system32\drivers\hardlock.sys
2015-11-09 12:27:45 ----A---- C:\windows\SYSWOW64\hlduinst.exe
2015-11-09 12:27:45 ----A---- C:\windows\SYSWOW64\hdinst_windows.dll
2015-11-09 12:27:45 ----A---- C:\windows\SYSWOW64\hasp_inst_help1.dll
2015-11-09 12:27:45 ----A---- C:\windows\system32\drivers\aksusb.sys
2015-11-09 12:27:45 ----A---- C:\windows\system32\drivers\akshasp.sys
2015-11-09 12:27:45 ----A---- C:\windows\system32\drivers\aksdf.sys
2015-11-09 12:27:45 ----A---- C:\windows\system32\drivers\aksclass.sys
2015-11-09 12:27:44 ----A---- C:\windows\SYSWOW64\UNWISE.EXE
2015-11-09 12:27:44 ----A---- C:\windows\SYSWOW64\hinstd.dll
2015-11-09 12:27:44 ----A---- C:\windows\SYSWOW64\haspds_windows.dll
2015-11-08 20:24:33 ----A---- C:\windows\system32\drivers\multikey.sys
2015-11-08 20:24:32 ----RA---- C:\windows\SYSWOW64\drivers\NSHE.SYS
2015-11-03 23:11:33 ----A---- C:\windows\system32\WinUSBCoInstaller.dll
2015-11-03 23:11:32 ----A---- C:\windows\system32\WdfCoInstaller01007.dll
2015-11-03 23:11:32 ----A---- C:\windows\system32\drivers\ssudmdm.sys
2015-11-03 23:11:32 ----A---- C:\windows\system32\drivers\ssudbus.sys
2015-11-03 23:10:55 ----D---- C:\Program Files\SAMSUNG
2015-11-03 23:10:16 ----D---- C:\ProgramData\Samsung
2015-11-03 11:37:01 ----D---- C:\Program Files (x86)\MyPhoneExplorer
======List of files/folders modified in the last 1 month======
2015-11-23 12:35:15 ----D---- C:\windows\Temp
2015-11-23 12:35:05 ----RD---- C:\Program Files
2015-11-23 12:34:09 ----D---- C:\Users\Beli\AppData\Roaming\TeamViewer
2015-11-23 12:34:09 ----D---- C:\Users\Beli\AppData\Roaming\DAEMON Tools Lite
2015-11-23 12:34:05 ----D---- C:\windows\inf
2015-11-23 12:34:04 ----D---- C:\Windows
2015-11-23 12:01:25 ----D---- C:\windows\system32\Tasks
2015-11-23 11:42:34 ----D---- C:\The KMPlayer
2015-11-23 11:38:35 ----D---- C:\windows\System32
2015-11-23 11:38:35 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-11-23 08:07:18 ----D---- C:\ProgramData\organiser
2015-11-23 08:03:32 ----A---- C:\windows\SYSWOW64\log.txt
2015-11-23 08:02:34 ----D---- C:\windows\system32\config
2015-11-23 08:00:45 ----D---- C:\ProgramData\NVIDIA
2015-11-22 12:00:09 ----D---- C:\windows\system32\drivers
2015-11-21 20:54:52 ----SHD---- C:\windows\Installer
2015-11-21 20:54:48 ----D---- C:\Program Files (x86)\Common Files
2015-11-21 20:54:43 ----HD---- C:\ProgramData
2015-11-21 20:54:32 ----RD---- C:\Program Files (x86)
2015-11-21 20:53:06 ----SHD---- C:\System Volume Information
2015-11-21 20:51:45 ----D---- C:\windows\SysWOW64
2015-11-21 20:51:45 ----D---- C:\Program Files (x86)\HDD Regenerator
2015-11-20 17:41:02 ----D---- C:\Program Files (x86)\TeamViewer
2015-11-15 13:52:54 ----D---- C:\windows\rescache
2015-11-14 12:44:54 ----D---- C:\windows\winsxs
2015-11-14 12:39:23 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-11-14 12:39:23 ----D---- C:\windows\system32\cs-CZ
2015-11-14 12:39:22 ----D---- C:\windows\SYSWOW64\en-US
2015-11-14 12:39:22 ----D---- C:\Program Files\Internet Explorer
2015-11-14 12:39:21 ----D---- C:\windows\system32\en-US
2015-11-14 12:39:20 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-14 12:39:14 ----D---- C:\windows\AppPatch
2015-11-14 12:39:11 ----D---- C:\windows\system32\migration
2015-11-14 08:23:36 ----D---- C:\Program Files (x86)\SpeedFan
2015-11-14 08:16:42 ----D---- C:\windows\Microsoft.NET
2015-11-14 08:09:57 ----RSD---- C:\windows\assembly
2015-11-14 07:58:57 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2015-11-14 07:56:52 ----D---- C:\Program Files\Windows Journal
2015-11-13 21:58:33 ----D---- C:\windows\system32\catroot2
2015-11-09 16:37:57 ----D---- C:\windows\system32\NDF
2015-11-09 16:27:08 ----D---- C:\windows\Prefetch
2015-11-09 16:26:55 ----D---- C:\windows\system32\DriverStore
2015-11-09 16:11:43 ----D---- C:\windows\system32\Setup
2015-11-09 16:05:19 ----D---- C:\windows\system
2015-11-09 12:29:15 ----D---- C:\windows\SYSWOW64\drivers
2015-11-03 11:33:07 ----D---- C:\windows\system32\drivers\UMDF
2015-11-02 21:16:35 ----D---- C:\hry
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-05-20 557848]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2015-01-08 834544]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-06 254528]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 NetworkX;NetworkX; C:\windows\syswow64\ckldrv.sys []
R1 Tosrfcom;Bluetooth RFCOMM; C:\windows\System32\Drivers\tosrfcom.sys [2010-11-29 82224]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aksdf;aksdf; C:\windows\system32\DRIVERS\aksdf.sys [2013-01-14 90056]
R2 aksfridge;aksfridge; \??\C:\windows\system32\drivers\aksfridge.sys [2013-02-19 141064]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2013-09-17 157432]
R2 hardlock;hardlock; \??\C:\windows\system32\drivers\hardlock.sys [2013-03-11 331144]
R2 multikey;Virtual USB MultiKey; C:\windows\system32\DRIVERS\multikey.sys [2013-02-20 67584]
R2 speedfan;speedfan; \??\C:\windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\windows\system32\DRIVERS\TVALZFL.sys [2009-06-19 14472]
R3 akshasp;SafeNet Inc. HASP Key; C:\windows\system32\DRIVERS\akshasp.sys [2013-01-14 60488]
R3 aksusb;SafeNet Inc. USB Key; C:\windows\system32\DRIVERS\aksusb.sys [2013-03-05 303368]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2010-12-17 2675712]
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver; C:\windows\system32\DRIVERS\btfilter.sys [2010-10-18 42096]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2011-01-27 1577088]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C62x64.sys [2010-11-08 76912]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2011-05-10 174184]
R3 PGEffect;Pangu effect driver; C:\windows\system32\DRIVERS\pgeffect.sys [2011-02-08 38096]
R3 QIOMem;Generic IO & Memory Access; C:\windows\system32\drivers\QIOMem.sys [2009-06-15 12800]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-02-03 1413680]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784]
R3 tosporte;Bluetooth COM Port; C:\windows\system32\DRIVERS\tosporte.sys [2009-06-17 54664]
R3 tosrfbd;Bluetooth RFBUS; C:\windows\system32\DRIVERS\tosrfbd.sys [2011-01-20 291120]
R3 tosrfec;Bluetooth ACPI; C:\windows\system32\DRIVERS\tosrfec.sys [2010-06-18 18872]
R3 Tosrfhid;Bluetooth RFHID; C:\windows\system32\DRIVERS\Tosrfhid.sys [2010-08-30 94528]
R3 Tosrfusb;Bluetooth USB Controller; C:\windows\system32\DRIVERS\tosrfusb.sys [2011-01-27 67384]
S3 BtAudioBusSrv;Ralink Bluetooth Audio Bus Service; C:\windows\System32\Drivers\BtAudioBus.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 FTDIBUS;USB Serial Converter Driver; C:\windows\system32\drivers\ftdibus.sys [2014-01-31 94704]
S3 FTSER2K;USB Serial Port Driver; C:\windows\system32\drivers\ftser2k.sys [2014-10-21 79872]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2010-12-01 250984]
S3 RSUSBVSTOR;RTSUVSTOR.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RTSUVSTOR.sys [2011-07-08 307304]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 tosrfbnp;Bluetooth RFBNEP; C:\windows\System32\Drivers\tosrfbnp.sys [2010-11-11 50864]
S3 tosrfnds;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\tosrfnds.sys [2009-07-24 26472]
S3 TosRfSnd;Bluetooth Audio; C:\windows\system32\drivers\tosrfsnd.sys [2010-04-26 63488]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\windows\system32\DRIVERS\VBoxNetAdp.sys [2014-11-21 141440]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\windows\system32\DRIVERS\wdcsam64.sys [2011-02-16 14464]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 cfWiMAXService;ConfigFree WiMAX Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
R2 ConfigFree Service;ConfigFree Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
R2 Crypkey License;Crypkey License; C:\windows\system32\crypserv.exe [2008-05-08 122880]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2011-03-01 27648]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2014-02-24 1343408]
R2 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fb_inet_server.exe [2010-09-17 3727360]
R2 hasplms;Sentinel Local License Manager; C:\windows\system32\hasplms.exe [2013-01-11 4466120]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-20 325656]
R2 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2011-03-29 598312]
R2 NVSvc;NVIDIA Driver Helper Service; C:\windows\system32\nvvsvc.exe [2011-05-11 993896]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2011-03-01 27648]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-06-16 741640]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-05-11 378472]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-11 5702416]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\windows\system32\TODDSrv.exe [2010-10-20 138656]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2010-12-09 489384]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\TECO\TecoService.exe [2011-03-02 266680]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2011-03-01 27648]
R3 TMachInfo;TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2010-11-29 54136]
R3 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2010-04-12 196976]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-12-08 137632]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2011-07-01 828856]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-09-04 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-10-31 114688]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2011-02-10 112080]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2014-09-09 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 LkCitadelServer;NI Citadel 4 Service; C:\windows\SysWOW64\lkcitdl.exe [2010-10-27 695136]
S4 lkClassAds;NI PSP Service Locator; C:\windows\SysWOW64\lkads.exe [2013-06-12 53544]
S4 lkTimeSync;NI Time Synchronization; C:\windows\SysWOW64\lktsrv.exe [2013-06-12 63792]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NIApplicationWebServer;NI Application Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2013-06-08 57696]
S4 NIApplicationWebServer64;NI Application Web Server (64-bit); C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [2013-06-08 81248]
S4 NIDomainService;NI Domain Service; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [2013-06-12 380720]
S4 NILM License Manager;NI License Server; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [2010-08-02 1427688]
S4 nimDNSResponder;NI mDNS Responder Service; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [2013-05-11 260976]
S4 NiSvcLoc;NI Service Locator; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [2013-06-07 90440]
S4 NISystemWebServer;NI System Web Server; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [2013-06-08 57680]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivka
vypada OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivka
Děkuji mockrát. Ještě bych měl jednu preventivku. Na jednom NTB se objevil v prohlížeči jako výchozí stránka omnibox. Ten jsem odstranil, ale po vypnutí tam byl znova, tak jestli se tam něco neschovává. NOD nic nenašel. Děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepa at 2015-11-26 08:08:20
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 409 GB (88%) free of 465 GB
Total RAM: 7813 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:08:24, on 26.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal
Running processes:
C:\Windows\TEMP\DPTF\esif_assist.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\SFK\SSFK.exe
C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Pepa.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.omniboxes.com/?type=hp&ts=14 ... UDV3NBUDVX
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.omniboxes.com/?type=hp&ts=14 ... UDV3NBUDVX
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.omniboxes.com/?type=hp&ts=14 ... UDV3NBUDVX
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Credential Vault Host Control Service - Broadcom Corporation - c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
O23 - Service: Credential Vault Host Storage - Broadcom Corporation - c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
O23 - Service: Dell Foundation Services - Dell - C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Dell Products, LP. - c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: ESIF Upper Framework Service (esifsvc) - Intel Corporation - C:\Windows\SysWOW64\esif_uf.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: IhPul - tsvr.com - C:\Users\Pepa\AppData\Roaming\TSv\TSvr.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Invincea FreeSpace Service (InvProtectSvc) - Invincea, Inc. - C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SboxSvc - Invincea, Inc. - C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SSFK - TODO: <???> - C:\Program Files (x86)\SFK\SSFK.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WdsManPro Service (WdsManPro) - DTools LIMITED - C:\ProgramData\tWMiniProt\WMiniPro.exe
O23 - Service: WinZiper service (winzipersvc) - Taiwan Shui Mu Chih Ching Technology Limited - C:\Program Files (x86)\WinZipper\winzipersvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 13328 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\igfxCUIService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DELLGRM
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-85e5d0ae-59d0-459c-8082-f52cace7794b -SystemEventPortName:HostProcess-a0294ba6-51a7-4e1a-bc6d-dc704af4cfb4 -IoCancelEventPortName:HostProcess-8355798f-9c26-4dcd-a152-2fd19a82ae8c -NonStateChangingEventPortName:HostProcess-1f226623-1661-4bfa-808f-2abb6aa6ba14 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:25749543-411c-4fbf-9ac0-5984a6d44b8a -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7a8bac23-e7e2-40cf-8945-d1a52036cdcc -SystemEventPortName:HostProcess-62a09301-5ccc-42fa-9616-a28518f70b03 -IoCancelEventPortName:HostProcess-f46d254f-35af-4f17-a5b2-88cb4dc1c34f -NonStateChangingEventPortName:HostProcess-eb2503e6-06ef-4c70-abdd-631be564650e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:75fa91bf-c2b9-4891-a61f-bed5805093b2 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-642bdc31-57c3-49ef-bcbc-1ec317c2eb0f -SystemEventPortName:HostProcess-3bf5435a-aec7-4e21-8174-e219983097d1 -IoCancelEventPortName:HostProcess-5b3faf6c-3c0c-4c37-929d-73c543366d07 -NonStateChangingEventPortName:HostProcess-23409d43-4a4d-4faa-8dbf-2b3c03105cb7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6ad2f0fc-e86d-4466-8fdf-318006375a35 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5364c140-012e-4e3f-a579-a78ed33ba4c2 -SystemEventPortName:HostProcess-13269fdc-84b3-4b46-bd2a-0aa968814957 -IoCancelEventPortName:HostProcess-d0e1a4c2-f67b-4b48-9df9-0330f2331384 -NonStateChangingEventPortName:HostProcess-0cfa0a65-bda3-437b-8d83-517cddc3a7ca -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6fdc5e7c-58d0-4680-b6f9-1ba252a45aad -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f99f7742-05b1-4394-bec9-36a563b70ad5 -SystemEventPortName:HostProcess-233fcc68-6eed-4a06-b78c-193e5ead1390 -IoCancelEventPortName:HostProcess-f612afa9-89e1-418f-b2ed-f86086b90d22 -NonStateChangingEventPortName:HostProcess-f95a7c0b-fb52-4dea-ad06-8e7c3c46c310 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b8575de4-80a3-425a-b5fc-ad5853fbf10c -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\WinZipper\winzipersvc.exe"
C:\Windows\system32\WLANExt.exe 26135584
\??\C:\Windows\system32\conhost.exe "-718205726-547647316-2063446792-1438331339-1596211310650439695229952876825864660
C:\Windows\System32\spoolsv.exe
"c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe"
"c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\DellTPad\HidMonitorSvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
C:\Windows\SysWOW64\esif_uf.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe"
C:\Windows\system32\IProsetMonitor.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Windows\TEMP\DPTF\esif_assist.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" /s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX6
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "1786536253-162031793-13487595084707724451906971-1806152536-2126970547885998377
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\servicing\TrustedInstaller.exe
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
taskeng.exe {91A0AAF1-76D5-44DF-A3D6-4197E1465E65}
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Users\Pepa\AppData\Roaming\TSv\TSvr.exe
C:\ProgramData\tWMiniProt\WMiniPro.exe -service
"C:\Program Files (x86)\SFK\SSFK.exe" -s
"C:\Program Files (x86)\SFK\SSFK.exe" -ns
"C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\DRIVERS\o2flash.exe
"C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE"
"C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE" C:\Users\Pepa
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe"
\??\C:\Windows\system32\conhost.exe "881505981-1668312384-1097342490-448490851-1300347919-1897346505-523368414-160923936
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3944.0.641814277\414146453" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3960 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="3944.3.126860067\1073827775" --font-cache-shared-handle=3132 /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Users\Pepa\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-10-05 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-10-05 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-10-05 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-10-05 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2014-03-13 727896]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-09-15 7637208]
"RtHDVBg_MAXX6"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-09-02 1396592]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2014-08-18 4876496]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-06-27 7822136]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-06-25 36352]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-11-22 2919168]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-11-16 8591272]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-06-27 292848]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-26 08:08:20 ----D---- C:\rsit
2015-11-26 08:08:20 ----D---- C:\Program Files\trend micro
2015-11-26 08:02:17 ----D---- C:\Program Files\CCleaner
2015-11-26 07:42:30 ----D---- C:\Program Files (x86)\SFK
2015-11-26 07:42:15 ----D---- C:\ProgramData\tWMiniProt
2015-11-26 07:41:09 ----A---- C:\Windows\SYSWOW64\en7.exe
2015-11-13 12:30:54 ----A---- C:\Windows\system32\wuaueng.dll
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wuwebv.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wups2.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wups.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wudriver.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wucltux.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wuauclt.exe
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wuapp.exe
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wuapi.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-11-13 12:29:59 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-11-13 12:29:59 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-11-13 12:29:59 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-11-13 12:29:59 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-11-13 12:29:58 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-13 12:29:58 ----A---- C:\Windows\system32\iernonce.dll
2015-11-13 12:29:58 ----A---- C:\Windows\system32\ie4uinit.exe
2015-11-13 12:29:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-11-13 12:29:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-11-13 12:29:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-11-13 12:29:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-11-13 12:29:56 ----A---- C:\Windows\system32\occache.dll
2015-11-13 12:29:56 ----A---- C:\Windows\system32\iedkcs32.dll
2015-11-13 12:29:55 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-11-13 12:29:55 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-11-13 12:29:55 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-11-13 12:29:55 ----A---- C:\Windows\system32\urlmon.dll
2015-11-13 12:29:55 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-11-13 12:29:54 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-11-13 12:29:54 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-11-13 12:29:54 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-11-13 12:29:54 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-11-13 12:29:54 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-13 12:29:54 ----A---- C:\Windows\system32\msfeeds.dll
2015-11-13 12:29:54 ----A---- C:\Windows\system32\dxtrans.dll
2015-11-13 12:29:53 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-11-13 12:29:53 ----A---- C:\Windows\system32\iesetup.dll
2015-11-13 12:29:53 ----A---- C:\Windows\system32\ieapfltr.dll
2015-11-13 12:29:52 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-11-13 12:29:52 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-11-13 12:29:52 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-11-13 12:29:52 ----A---- C:\Windows\system32\vbscript.dll
2015-11-13 12:29:52 ----A---- C:\Windows\system32\iertutil.dll
2015-11-13 12:29:51 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-11-13 12:29:51 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-11-13 12:29:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-11-13 12:29:51 ----A---- C:\Windows\system32\jsproxy.dll
2015-11-13 12:29:50 ----A---- C:\Windows\system32\mshtmled.dll
2015-11-13 12:29:50 ----A---- C:\Windows\system32\ieui.dll
2015-11-13 12:29:50 ----A---- C:\Windows\system32\ieframe.dll
2015-11-13 12:29:50 ----A---- C:\Windows\system32\dxtmsft.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\webcheck.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\jscript9diag.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\jscript9.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\jscript.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\ieUnatt.exe
2015-11-13 12:29:48 ----A---- C:\Windows\system32\wininet.dll
2015-11-13 12:29:48 ----A---- C:\Windows\system32\msrating.dll
2015-11-13 12:29:48 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-11-13 12:29:47 ----A---- C:\Windows\system32\mshtml.dll
2015-11-13 12:28:09 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-11-13 12:28:09 ----A---- C:\Windows\system32\kerberos.dll
2015-11-13 12:28:08 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-11-13 12:28:08 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-11-13 12:28:08 ----A---- C:\Windows\system32\schannel.dll
2015-11-13 12:28:08 ----A---- C:\Windows\system32\ncrypt.dll
2015-11-13 12:28:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-11-13 12:28:08 ----A---- C:\Windows\system32\drivers\cng.sys
2015-11-13 12:28:07 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-11-13 12:28:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-11-13 12:28:07 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-11-13 12:28:07 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-11-13 12:28:07 ----A---- C:\Windows\system32\kernel32.dll
2015-11-13 12:28:07 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-11-13 12:28:06 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-11-13 12:28:06 ----A---- C:\Windows\system32\lsasrv.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\wow64.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\winsrv.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\srcore.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\rstrui.exe
2015-11-13 12:28:05 ----A---- C:\Windows\system32\rpcrt4.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\ntdll.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\KernelBase.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-11-13 12:28:05 ----A---- C:\Windows\system32\conhost.exe
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-11-13 12:28:04 ----A---- C:\Windows\system32\wdigest.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\TSpkg.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\sspicli.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\srclient.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\smss.exe
2015-11-13 12:28:04 ----A---- C:\Windows\system32\msv1_0.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\lsass.exe
2015-11-13 12:28:04 ----A---- C:\Windows\system32\csrsrv.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\cryptbase.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\auditpol.exe
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\wow64win.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\wow64cpu.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\sspisrv.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\secur32.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\ntvdm64.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-11-13 12:28:03 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-11-13 12:28:03 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-11-13 12:28:03 ----A---- C:\Windows\system32\credssp.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-13 12:28:02 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-13 12:28:01 ----A---- C:\Windows\SYSWOW64\user.exe
2015-11-13 12:28:01 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-11-13 12:28:01 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-11-13 12:28:01 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-11-13 12:28:01 ----A---- C:\Windows\system32\apisetschema.dll
2015-11-13 12:28:01 ----A---- C:\Windows\system32\adtschema.dll
2015-11-13 12:28:00 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-11-13 12:28:00 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-11-13 12:28:00 ----A---- C:\Windows\system32\msobjs.dll
2015-11-13 12:28:00 ----A---- C:\Windows\system32\msaudite.dll
2015-11-13 12:27:36 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-11-13 12:27:36 ----A---- C:\Windows\system32\drivers\afd.sys
2015-11-13 12:27:33 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-11-13 12:27:33 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-11-13 12:27:33 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-11-13 12:27:33 ----A---- C:\Windows\system32\shimeng.dll
2015-11-13 12:27:33 ----A---- C:\Windows\system32\sdbinst.exe
2015-11-13 12:27:33 ----A---- C:\Windows\system32\apphelp.dll
2015-11-13 12:27:33 ----A---- C:\Windows\system32\aelupsvc.dll
2015-11-13 12:27:31 ----A---- C:\Windows\system32\win32k.sys
2015-11-13 12:27:28 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-11-13 12:27:24 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-11-13 12:27:24 ----A---- C:\Windows\system32\InkEd.dll
2015-11-13 12:27:23 ----A---- C:\Windows\system32\jnwmon.dll
2015-11-10 11:09:43 ----D---- C:\ProgramData\1WMiniPro1
2015-11-10 10:25:52 ----SHD---- C:\Config.Msi
2015-11-10 10:22:09 ----D---- C:\ProgramData\BWMiniProB
2015-11-04 08:40:04 ----D---- C:\Windows\system32\log
======List of files/folders modified in the last 1 month======
2015-11-26 08:08:22 ----D---- C:\Windows\Temp
2015-11-26 08:08:20 ----RD---- C:\Program Files
2015-11-26 08:05:35 ----D---- C:\Windows\panther
2015-11-26 08:05:35 ----D---- C:\Windows\inf
2015-11-26 08:05:35 ----D---- C:\Windows\debug
2015-11-26 08:05:35 ----D---- C:\Windows
2015-11-26 08:04:22 ----RD---- C:\Program Files (x86)
2015-11-26 08:02:19 ----D---- C:\Windows\system32\Tasks
2015-11-26 07:48:39 ----D---- C:\Program Files (x86)\Dell Backup and Recovery
2015-11-26 07:45:02 ----D---- C:\Windows\System32
2015-11-26 07:45:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-26 07:43:49 ----D---- C:\Program Files (x86)\WinZipper
2015-11-26 07:42:23 ----D---- C:\Windows\SysWOW64
2015-11-26 07:42:15 ----HD---- C:\ProgramData
2015-11-26 07:42:12 ----D---- C:\Users\Pepa\AppData\Roaming\TSv
2015-11-26 07:41:10 ----D---- C:\Windows\system32\config
2015-11-26 07:40:59 ----HD---- C:\Windows\system32\WLANProfiles
2015-11-24 14:57:35 ----D---- C:\Windows\Microsoft.NET
2015-11-24 14:54:41 ----RSD---- C:\Windows\assembly
2015-11-24 14:48:46 ----SHD---- C:\System Volume Information
2015-11-20 13:41:19 ----SD---- C:\ProgramData\Microsoft
2015-11-20 13:34:09 ----D---- C:\Windows\system32\drivers
2015-11-13 12:48:30 ----D---- C:\Windows\winsxs
2015-11-13 12:46:09 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-11-13 12:46:09 ----D---- C:\Windows\system32\cs-CZ
2015-11-13 12:46:09 ----D---- C:\Program Files\Internet Explorer
2015-11-13 12:46:07 ----D---- C:\Windows\SYSWOW64\en-US
2015-11-13 12:46:05 ----D---- C:\Windows\system32\en-US
2015-11-13 12:46:05 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-13 12:45:59 ----D---- C:\Windows\AppPatch
2015-11-13 12:45:56 ----D---- C:\Windows\system32\migration
2015-11-13 12:45:39 ----D---- C:\Windows\system32\MRT
2015-11-13 12:43:02 ----A---- C:\Windows\system32\MRT.exe
2015-11-13 12:41:49 ----SHD---- C:\Windows\Installer
2015-11-13 12:36:42 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-11-13 12:35:44 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-11-13 12:35:19 ----D---- C:\Program Files\Windows Journal
2015-11-13 12:27:11 ----D---- C:\Windows\system32\catroot2
2015-11-10 10:26:02 ----D---- C:\Program Files\Dell
2015-11-04 08:38:44 ----D---- C:\Users\Pepa\AppData\Roaming\WinZipper
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2014-06-07 670056]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2014-06-07 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-06-27 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2011-07-16 22128]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-11-21 141264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-11-21 171152]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-11-21 125296]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys [2014-06-03 561456]
R3 BCMNFCSCR;Broadcom NFC Smart Card Reader; C:\Windows\system32\DRIVERS\bcmnfcscr7.sys [2014-09-17 41728]
R3 bcmnfcusb;NFC USB Bus Driver; C:\Windows\system32\DRIVERS\bcmnfcusb7.sys [2014-09-17 44288]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2014-12-07 80384]
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-05-13 141624]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-06-17 1424184]
R3 cvusbdrv;Dell ControlVault; C:\Windows\System32\Drivers\cvusbdrv.sys [2014-09-17 61664]
R3 dptf_acpi;dptf_acpi; C:\Windows\system32\DRIVERS\dptf_acpi.sys [2014-06-10 41824]
R3 dptf_cpu;dptf_cpu; C:\Windows\system32\DRIVERS\dptf_cpu.sys [2014-06-10 35136]
R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2014-07-23 489752]
R3 esif_lf;esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [2014-06-10 192624]
R3 ibtusb;Intel(R) Wireless Bluetooth(R); C:\Windows\system32\DRIVERS\ibtusb.sys [2014-09-18 222664]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-10-04 4753336]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTDVHD64.sys [2014-09-15 2642264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-06-27 383472]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-06-27 795120]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2014-06-12 25976]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-09-30 129312]
R3 NETwNs64;___ Intel(R) Wireless Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw02.sys [2014-09-11 3423720]
R3 O2FJ2RDR;O2FJ2RDR; C:\Windows\system32\DRIVERS\O2FJ2w7x64.sys [2014-05-14 210592]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2014-04-21 75952]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wbfcvusbdrv;WBF Control Vault; C:\Windows\System32\Drivers\wbfcvusbdrv.sys [2014-09-17 17632]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2014-12-07 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-06-12 35192]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-10-04 454416]
S3 InvProtectDrv;InvProtectDrv; \??\C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [2014-07-30 50696]
S3 netvsc;netvsc; C:\Windows\system32\DRIVERS\netvsc60.sys [2010-11-21 168448]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SboxDrv;SboxDrv; \??\C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [2014-07-30 183304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 SynthVid;SynthVid; C:\Windows\system32\DRIVERS\VMBusVideoM.sys [2010-11-21 22528]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 ApHidMonitorService;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2014-03-27 87384]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-06-17 1202552]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-07-14 1710456]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-07-14 1161592]
R2 Credential Vault Host Control Service;Credential Vault Host Control Service; c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [2014-09-17 1044872]
R2 Credential Vault Host Storage;Credential Vault Host Storage; c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [2014-09-17 38792]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Dell Foundation Services;Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [2015-10-20 114888]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-11-22 814264]
R2 esifsvc;ESIF Upper Framework Service; C:\Windows\SysWOW64\esif_uf.exe [2014-06-10 953352]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-08-18 632528]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-06-25 16232]
R2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2014-09-18 122984]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-10-04 328296]
R2 IhPul;IhPul; C:\Users\Pepa\AppData\Roaming\TSv\TSvr.exe [2015-11-23 580752]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2014-04-23 260360]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-09-30 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-09-30 409376]
R2 O2FLASH;O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [2014-03-07 65536]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-08-18 154832]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-08-19 291032]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2015-02-12 2005392]
R2 SSFK;SSFK; C:\Program Files (x86)\SFK\SSFK.exe [2015-11-25 170144]
R2 WdsManPro;WdsManPro Service; C:\ProgramData\tWMiniProt\WMiniPro.exe [2015-10-30 295424]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-09 123856]
S2 DellDigitalDelivery;Dell Digital Delivery Service; c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2014-04-10 202248]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-15 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-13 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-09 51648]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-10-04 279144]
S3 Dell.CommandPowerManager.Service;Dell.CommandPowerManager.Service; C:\Windows\SysWOW64\dllhost.exe [2009-07-14 7168]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-11-22 42360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-15 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-04-03 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-10-31 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 InvProtectSvc;Invincea FreeSpace Service; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [2014-07-30 2672328]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25 178312]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-08-18 265936]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SboxSvc;SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [2014-07-30 173256]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-03-12 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepa at 2015-11-26 08:08:20
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 409 GB (88%) free of 465 GB
Total RAM: 7813 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:08:24, on 26.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal
Running processes:
C:\Windows\TEMP\DPTF\esif_assist.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\SFK\SSFK.exe
C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Pepa.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.omniboxes.com/?type=hp&ts=14 ... UDV3NBUDVX
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.omniboxes.com/?type=hp&ts=14 ... UDV3NBUDVX
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.omniboxes.com/?type=hp&ts=14 ... UDV3NBUDVX
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Credential Vault Host Control Service - Broadcom Corporation - c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
O23 - Service: Credential Vault Host Storage - Broadcom Corporation - c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
O23 - Service: Dell Foundation Services - Dell - C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Dell Products, LP. - c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: ESIF Upper Framework Service (esifsvc) - Intel Corporation - C:\Windows\SysWOW64\esif_uf.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: IhPul - tsvr.com - C:\Users\Pepa\AppData\Roaming\TSv\TSvr.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Invincea FreeSpace Service (InvProtectSvc) - Invincea, Inc. - C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SboxSvc - Invincea, Inc. - C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SSFK - TODO: <???> - C:\Program Files (x86)\SFK\SSFK.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WdsManPro Service (WdsManPro) - DTools LIMITED - C:\ProgramData\tWMiniProt\WMiniPro.exe
O23 - Service: WinZiper service (winzipersvc) - Taiwan Shui Mu Chih Ching Technology Limited - C:\Program Files (x86)\WinZipper\winzipersvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 13328 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\igfxCUIService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SENDINPUT
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DELLGRM
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-85e5d0ae-59d0-459c-8082-f52cace7794b -SystemEventPortName:HostProcess-a0294ba6-51a7-4e1a-bc6d-dc704af4cfb4 -IoCancelEventPortName:HostProcess-8355798f-9c26-4dcd-a152-2fd19a82ae8c -NonStateChangingEventPortName:HostProcess-1f226623-1661-4bfa-808f-2abb6aa6ba14 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:25749543-411c-4fbf-9ac0-5984a6d44b8a -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7a8bac23-e7e2-40cf-8945-d1a52036cdcc -SystemEventPortName:HostProcess-62a09301-5ccc-42fa-9616-a28518f70b03 -IoCancelEventPortName:HostProcess-f46d254f-35af-4f17-a5b2-88cb4dc1c34f -NonStateChangingEventPortName:HostProcess-eb2503e6-06ef-4c70-abdd-631be564650e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:75fa91bf-c2b9-4891-a61f-bed5805093b2 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-642bdc31-57c3-49ef-bcbc-1ec317c2eb0f -SystemEventPortName:HostProcess-3bf5435a-aec7-4e21-8174-e219983097d1 -IoCancelEventPortName:HostProcess-5b3faf6c-3c0c-4c37-929d-73c543366d07 -NonStateChangingEventPortName:HostProcess-23409d43-4a4d-4faa-8dbf-2b3c03105cb7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6ad2f0fc-e86d-4466-8fdf-318006375a35 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5364c140-012e-4e3f-a579-a78ed33ba4c2 -SystemEventPortName:HostProcess-13269fdc-84b3-4b46-bd2a-0aa968814957 -IoCancelEventPortName:HostProcess-d0e1a4c2-f67b-4b48-9df9-0330f2331384 -NonStateChangingEventPortName:HostProcess-0cfa0a65-bda3-437b-8d83-517cddc3a7ca -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6fdc5e7c-58d0-4680-b6f9-1ba252a45aad -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f99f7742-05b1-4394-bec9-36a563b70ad5 -SystemEventPortName:HostProcess-233fcc68-6eed-4a06-b78c-193e5ead1390 -IoCancelEventPortName:HostProcess-f612afa9-89e1-418f-b2ed-f86086b90d22 -NonStateChangingEventPortName:HostProcess-f95a7c0b-fb52-4dea-ad06-8e7c3c46c310 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b8575de4-80a3-425a-b5fc-ad5853fbf10c -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\WinZipper\winzipersvc.exe"
C:\Windows\system32\WLANExt.exe 26135584
\??\C:\Windows\system32\conhost.exe "-718205726-547647316-2063446792-1438331339-1596211310650439695229952876825864660
C:\Windows\System32\spoolsv.exe
"c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe"
"c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\DellTPad\HidMonitorSvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
C:\Windows\SysWOW64\esif_uf.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe"
C:\Windows\system32\IProsetMonitor.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Windows\TEMP\DPTF\esif_assist.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" /s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX6
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "1786536253-162031793-13487595084707724451906971-1806152536-2126970547885998377
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\servicing\TrustedInstaller.exe
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
taskeng.exe {91A0AAF1-76D5-44DF-A3D6-4197E1465E65}
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /IM
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Users\Pepa\AppData\Roaming\TSv\TSvr.exe
C:\ProgramData\tWMiniProt\WMiniPro.exe -service
"C:\Program Files (x86)\SFK\SSFK.exe" -s
"C:\Program Files (x86)\SFK\SSFK.exe" -ns
"C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\DRIVERS\o2flash.exe
"C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe"
"C:\Program Files (x86)\Dell Backup and Recovery\COMPONENTS\DBRUPDATE\DBRUPD.EXE"
"C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE" C:\Users\Pepa
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe"
\??\C:\Windows\system32\conhost.exe "881505981-1668312384-1097342490-448490851-1300347919-1897346505-523368414-160923936
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3944.0.641814277\414146453" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3960 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AppBannerTriggering/Control/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/ChromotingQUIC/Disabled/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Disabled/SafeBrowsingSocialEngineeringStrings/Enabled/*SdchPersistence/Enabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="3944.3.126860067\1073827775" --font-cache-shared-handle=3132 /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe9_ Global\UsGthrCtrlFltPipeMssGthrPipe9 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Users\Pepa\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-10-05 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-10-05 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-10-05 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-10-05 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2014-03-13 727896]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-09-15 7637208]
"RtHDVBg_MAXX6"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-09-02 1396592]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2014-08-18 4876496]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-06-27 7822136]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-06-25 36352]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-11-22 2919168]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-11-16 8591272]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-06-27 292848]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-26 08:08:20 ----D---- C:\rsit
2015-11-26 08:08:20 ----D---- C:\Program Files\trend micro
2015-11-26 08:02:17 ----D---- C:\Program Files\CCleaner
2015-11-26 07:42:30 ----D---- C:\Program Files (x86)\SFK
2015-11-26 07:42:15 ----D---- C:\ProgramData\tWMiniProt
2015-11-26 07:41:09 ----A---- C:\Windows\SYSWOW64\en7.exe
2015-11-13 12:30:54 ----A---- C:\Windows\system32\wuaueng.dll
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-11-13 12:30:53 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wuwebv.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wups2.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wups.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wudriver.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wucltux.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wuauclt.exe
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wuapp.exe
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wuapi.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-11-13 12:30:53 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-11-13 12:29:59 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-11-13 12:29:59 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-11-13 12:29:59 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-11-13 12:29:59 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-11-13 12:29:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-11-13 12:29:58 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-13 12:29:58 ----A---- C:\Windows\system32\iernonce.dll
2015-11-13 12:29:58 ----A---- C:\Windows\system32\ie4uinit.exe
2015-11-13 12:29:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-11-13 12:29:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-11-13 12:29:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-11-13 12:29:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-11-13 12:29:56 ----A---- C:\Windows\system32\occache.dll
2015-11-13 12:29:56 ----A---- C:\Windows\system32\iedkcs32.dll
2015-11-13 12:29:55 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-11-13 12:29:55 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-11-13 12:29:55 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-11-13 12:29:55 ----A---- C:\Windows\system32\urlmon.dll
2015-11-13 12:29:55 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-11-13 12:29:54 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-11-13 12:29:54 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-11-13 12:29:54 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-11-13 12:29:54 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-11-13 12:29:54 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-13 12:29:54 ----A---- C:\Windows\system32\msfeeds.dll
2015-11-13 12:29:54 ----A---- C:\Windows\system32\dxtrans.dll
2015-11-13 12:29:53 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-11-13 12:29:53 ----A---- C:\Windows\system32\iesetup.dll
2015-11-13 12:29:53 ----A---- C:\Windows\system32\ieapfltr.dll
2015-11-13 12:29:52 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-11-13 12:29:52 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-11-13 12:29:52 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-11-13 12:29:52 ----A---- C:\Windows\system32\vbscript.dll
2015-11-13 12:29:52 ----A---- C:\Windows\system32\iertutil.dll
2015-11-13 12:29:51 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-11-13 12:29:51 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-11-13 12:29:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-11-13 12:29:51 ----A---- C:\Windows\system32\jsproxy.dll
2015-11-13 12:29:50 ----A---- C:\Windows\system32\mshtmled.dll
2015-11-13 12:29:50 ----A---- C:\Windows\system32\ieui.dll
2015-11-13 12:29:50 ----A---- C:\Windows\system32\ieframe.dll
2015-11-13 12:29:50 ----A---- C:\Windows\system32\dxtmsft.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\webcheck.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\jscript9diag.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\jscript9.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\jscript.dll
2015-11-13 12:29:49 ----A---- C:\Windows\system32\ieUnatt.exe
2015-11-13 12:29:48 ----A---- C:\Windows\system32\wininet.dll
2015-11-13 12:29:48 ----A---- C:\Windows\system32\msrating.dll
2015-11-13 12:29:48 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-11-13 12:29:47 ----A---- C:\Windows\system32\mshtml.dll
2015-11-13 12:28:09 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-11-13 12:28:09 ----A---- C:\Windows\system32\kerberos.dll
2015-11-13 12:28:08 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-11-13 12:28:08 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-11-13 12:28:08 ----A---- C:\Windows\system32\schannel.dll
2015-11-13 12:28:08 ----A---- C:\Windows\system32\ncrypt.dll
2015-11-13 12:28:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-11-13 12:28:08 ----A---- C:\Windows\system32\drivers\cng.sys
2015-11-13 12:28:07 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-11-13 12:28:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-11-13 12:28:07 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-11-13 12:28:07 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-11-13 12:28:07 ----A---- C:\Windows\system32\kernel32.dll
2015-11-13 12:28:07 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-11-13 12:28:06 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-11-13 12:28:06 ----A---- C:\Windows\system32\lsasrv.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\wow64.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\winsrv.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\srcore.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\rstrui.exe
2015-11-13 12:28:05 ----A---- C:\Windows\system32\rpcrt4.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\ntdll.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\KernelBase.dll
2015-11-13 12:28:05 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-11-13 12:28:05 ----A---- C:\Windows\system32\conhost.exe
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-11-13 12:28:04 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-11-13 12:28:04 ----A---- C:\Windows\system32\wdigest.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\TSpkg.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\sspicli.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\srclient.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\smss.exe
2015-11-13 12:28:04 ----A---- C:\Windows\system32\msv1_0.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\lsass.exe
2015-11-13 12:28:04 ----A---- C:\Windows\system32\csrsrv.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\cryptbase.dll
2015-11-13 12:28:04 ----A---- C:\Windows\system32\auditpol.exe
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-11-13 12:28:03 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\wow64win.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\wow64cpu.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\sspisrv.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\secur32.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\ntvdm64.dll
2015-11-13 12:28:03 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-11-13 12:28:03 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-11-13 12:28:03 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-11-13 12:28:03 ----A---- C:\Windows\system32\credssp.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-13 12:28:02 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-13 12:28:02 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-13 12:28:01 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-13 12:28:01 ----A---- C:\Windows\SYSWOW64\user.exe
2015-11-13 12:28:01 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-11-13 12:28:01 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-11-13 12:28:01 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-11-13 12:28:01 ----A---- C:\Windows\system32\apisetschema.dll
2015-11-13 12:28:01 ----A---- C:\Windows\system32\adtschema.dll
2015-11-13 12:28:00 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-11-13 12:28:00 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-11-13 12:28:00 ----A---- C:\Windows\system32\msobjs.dll
2015-11-13 12:28:00 ----A---- C:\Windows\system32\msaudite.dll
2015-11-13 12:27:36 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-11-13 12:27:36 ----A---- C:\Windows\system32\drivers\afd.sys
2015-11-13 12:27:33 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-11-13 12:27:33 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-11-13 12:27:33 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-11-13 12:27:33 ----A---- C:\Windows\system32\shimeng.dll
2015-11-13 12:27:33 ----A---- C:\Windows\system32\sdbinst.exe
2015-11-13 12:27:33 ----A---- C:\Windows\system32\apphelp.dll
2015-11-13 12:27:33 ----A---- C:\Windows\system32\aelupsvc.dll
2015-11-13 12:27:31 ----A---- C:\Windows\system32\win32k.sys
2015-11-13 12:27:28 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-11-13 12:27:24 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-11-13 12:27:24 ----A---- C:\Windows\system32\InkEd.dll
2015-11-13 12:27:23 ----A---- C:\Windows\system32\jnwmon.dll
2015-11-10 11:09:43 ----D---- C:\ProgramData\1WMiniPro1
2015-11-10 10:25:52 ----SHD---- C:\Config.Msi
2015-11-10 10:22:09 ----D---- C:\ProgramData\BWMiniProB
2015-11-04 08:40:04 ----D---- C:\Windows\system32\log
======List of files/folders modified in the last 1 month======
2015-11-26 08:08:22 ----D---- C:\Windows\Temp
2015-11-26 08:08:20 ----RD---- C:\Program Files
2015-11-26 08:05:35 ----D---- C:\Windows\panther
2015-11-26 08:05:35 ----D---- C:\Windows\inf
2015-11-26 08:05:35 ----D---- C:\Windows\debug
2015-11-26 08:05:35 ----D---- C:\Windows
2015-11-26 08:04:22 ----RD---- C:\Program Files (x86)
2015-11-26 08:02:19 ----D---- C:\Windows\system32\Tasks
2015-11-26 07:48:39 ----D---- C:\Program Files (x86)\Dell Backup and Recovery
2015-11-26 07:45:02 ----D---- C:\Windows\System32
2015-11-26 07:45:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-26 07:43:49 ----D---- C:\Program Files (x86)\WinZipper
2015-11-26 07:42:23 ----D---- C:\Windows\SysWOW64
2015-11-26 07:42:15 ----HD---- C:\ProgramData
2015-11-26 07:42:12 ----D---- C:\Users\Pepa\AppData\Roaming\TSv
2015-11-26 07:41:10 ----D---- C:\Windows\system32\config
2015-11-26 07:40:59 ----HD---- C:\Windows\system32\WLANProfiles
2015-11-24 14:57:35 ----D---- C:\Windows\Microsoft.NET
2015-11-24 14:54:41 ----RSD---- C:\Windows\assembly
2015-11-24 14:48:46 ----SHD---- C:\System Volume Information
2015-11-20 13:41:19 ----SD---- C:\ProgramData\Microsoft
2015-11-20 13:34:09 ----D---- C:\Windows\system32\drivers
2015-11-13 12:48:30 ----D---- C:\Windows\winsxs
2015-11-13 12:46:09 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-11-13 12:46:09 ----D---- C:\Windows\system32\cs-CZ
2015-11-13 12:46:09 ----D---- C:\Program Files\Internet Explorer
2015-11-13 12:46:07 ----D---- C:\Windows\SYSWOW64\en-US
2015-11-13 12:46:05 ----D---- C:\Windows\system32\en-US
2015-11-13 12:46:05 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-13 12:45:59 ----D---- C:\Windows\AppPatch
2015-11-13 12:45:56 ----D---- C:\Windows\system32\migration
2015-11-13 12:45:39 ----D---- C:\Windows\system32\MRT
2015-11-13 12:43:02 ----A---- C:\Windows\system32\MRT.exe
2015-11-13 12:41:49 ----SHD---- C:\Windows\Installer
2015-11-13 12:36:42 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-11-13 12:35:44 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-11-13 12:35:19 ----D---- C:\Program Files\Windows Journal
2015-11-13 12:27:11 ----D---- C:\Windows\system32\catroot2
2015-11-10 10:26:02 ----D---- C:\Program Files\Dell
2015-11-04 08:38:44 ----D---- C:\Users\Pepa\AppData\Roaming\WinZipper
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2014-06-07 670056]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2014-06-07 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-06-27 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2011-07-16 22128]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-11-21 141264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-11-21 171152]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-11-21 125296]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys [2014-06-03 561456]
R3 BCMNFCSCR;Broadcom NFC Smart Card Reader; C:\Windows\system32\DRIVERS\bcmnfcscr7.sys [2014-09-17 41728]
R3 bcmnfcusb;NFC USB Bus Driver; C:\Windows\system32\DRIVERS\bcmnfcusb7.sys [2014-09-17 44288]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2014-12-07 80384]
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-05-13 141624]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-06-17 1424184]
R3 cvusbdrv;Dell ControlVault; C:\Windows\System32\Drivers\cvusbdrv.sys [2014-09-17 61664]
R3 dptf_acpi;dptf_acpi; C:\Windows\system32\DRIVERS\dptf_acpi.sys [2014-06-10 41824]
R3 dptf_cpu;dptf_cpu; C:\Windows\system32\DRIVERS\dptf_cpu.sys [2014-06-10 35136]
R3 e1dexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\Windows\system32\DRIVERS\e1d62x64.sys [2014-07-23 489752]
R3 esif_lf;esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [2014-06-10 192624]
R3 ibtusb;Intel(R) Wireless Bluetooth(R); C:\Windows\system32\DRIVERS\ibtusb.sys [2014-09-18 222664]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-10-04 4753336]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTDVHD64.sys [2014-09-15 2642264]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-06-27 383472]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-06-27 795120]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2014-06-12 25976]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-09-30 129312]
R3 NETwNs64;___ Intel(R) Wireless Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw02.sys [2014-09-11 3423720]
R3 O2FJ2RDR;O2FJ2RDR; C:\Windows\system32\DRIVERS\O2FJ2w7x64.sys [2014-05-14 210592]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2014-04-21 75952]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wbfcvusbdrv;WBF Control Vault; C:\Windows\System32\Drivers\wbfcvusbdrv.sys [2014-09-17 17632]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2014-12-07 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-06-12 35192]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-10-04 454416]
S3 InvProtectDrv;InvProtectDrv; \??\C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [2014-07-30 50696]
S3 netvsc;netvsc; C:\Windows\system32\DRIVERS\netvsc60.sys [2010-11-21 168448]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SboxDrv;SboxDrv; \??\C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [2014-07-30 183304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 SynthVid;SynthVid; C:\Windows\system32\DRIVERS\VMBusVideoM.sys [2010-11-21 22528]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 ApHidMonitorService;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2014-03-27 87384]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-06-17 1202552]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-07-14 1710456]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-07-14 1161592]
R2 Credential Vault Host Control Service;Credential Vault Host Control Service; c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [2014-09-17 1044872]
R2 Credential Vault Host Storage;Credential Vault Host Storage; c:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [2014-09-17 38792]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Dell Foundation Services;Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [2015-10-20 114888]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2011-11-22 814264]
R2 esifsvc;ESIF Upper Framework Service; C:\Windows\SysWOW64\esif_uf.exe [2014-06-10 953352]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-08-18 632528]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-06-25 16232]
R2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2014-09-18 122984]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2014-10-04 328296]
R2 IhPul;IhPul; C:\Users\Pepa\AppData\Roaming\TSv\TSvr.exe [2015-11-23 580752]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2014-04-23 260360]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-09-30 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-09-30 409376]
R2 O2FLASH;O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [2014-03-07 65536]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-08-18 154832]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-08-19 291032]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2015-02-12 2005392]
R2 SSFK;SSFK; C:\Program Files (x86)\SFK\SSFK.exe [2015-11-25 170144]
R2 WdsManPro;WdsManPro Service; C:\ProgramData\tWMiniProt\WMiniPro.exe [2015-10-30 295424]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-09 123856]
S2 DellDigitalDelivery;Dell Digital Delivery Service; c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [2014-04-10 202248]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-15 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-13 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-09 51648]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-10-04 279144]
S3 Dell.CommandPowerManager.Service;Dell.CommandPowerManager.Service; C:\Windows\SysWOW64\dllhost.exe [2009-07-14 7168]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-11-22 42360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-15 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-04-03 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-10-31 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 InvProtectSvc;Invincea FreeSpace Service; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [2014-07-30 2672328]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25 178312]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-08-18 265936]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SboxSvc;SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [2014-07-30 173256]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-03-12 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Re: Preventivka
citat:
Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivka
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 7 Professional x64
Ran by Pepa (Administrator) on źt 26.11.2015 at 13:11:41,46
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 7
Successfully deleted: C:\ProgramData\aWdsManProa (Folder)
Successfully deleted: C:\ProgramData\gWdsManProg (Folder)
Successfully repaired: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk (Shortcut)
Successfully repaired: C:\Users\Pepa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk (Shortcut)
Successfully repaired: C:\Users\Pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk (Shortcut)
Successfully repaired: C:\Users\Pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk (Shortcut)
Successfully repaired: C:\Users\Public\Desktop\Google Chrome.lnk (Shortcut)
Registry: 12
Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\winzipersvc (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Search Page (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Start Page (Registry Value)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 26.11.2015 at 13:13:20,23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 7 Professional x64
Ran by Pepa (Administrator) on źt 26.11.2015 at 13:11:41,46
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 7
Successfully deleted: C:\ProgramData\aWdsManProa (Folder)
Successfully deleted: C:\ProgramData\gWdsManProg (Folder)
Successfully repaired: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk (Shortcut)
Successfully repaired: C:\Users\Pepa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk (Shortcut)
Successfully repaired: C:\Users\Pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk (Shortcut)
Successfully repaired: C:\Users\Pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk (Shortcut)
Successfully repaired: C:\Users\Public\Desktop\Google Chrome.lnk (Shortcut)
Registry: 12
Successfully deleted: HKLM\SYSTEM\CurrentControlSet\services\winzipersvc (Registry Key)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Search Page (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page (Registry Value)
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Search Page (Registry Value)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Main\\Start Page (Registry Value)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 26.11.2015 at 13:13:20,23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: Preventivka
a teraz to vycisti este s ADWCleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivka
# AdwCleaner v5.022 - Logfile created 26/11/2015 at 13:34:09
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : Pepa - PEPA-PC
# Running from : C:\Users\Pepa\Downloads\adwcleaner_5.022.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : winzipersvc
[-] Service Deleted : SSFK
[-] Service Deleted : WdsManPro
[-] Service Deleted : IhPul
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\WinZipper
[-] Folder Deleted : C:\Program Files (x86)\SFK
[-] Folder Deleted : C:\ProgramData\1WMiniPro1
[-] Folder Deleted : C:\ProgramData\BWMiniProB
[-] Folder Deleted : C:\ProgramData\tWMiniProt
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[-] Folder Deleted : C:\Users\Pepa\AppData\Roaming\WinZipper
[-] Folder Deleted : C:\Users\Pepa\AppData\Roaming\TSv
***** [ Files ] *****
[-] File Deleted : C:\Windows\SysNative\log\iSafeKrnlCall.log
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.001
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.7z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.arj
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.bz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.bzip2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.cab
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.cpio
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.deb
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.dmg
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.fat
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.gz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.gzip
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.hfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.iso
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lha
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lzh
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lzma
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.ntfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.rar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.rpm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.squashfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.swm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.taz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tbz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tbz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tgz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tpz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.txz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.vhd
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.wim
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.xar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.xz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.zip
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4F622628-7632-4B28-B184-D7BA0CA3273B}
[-] Key Deleted : HKCU\Software\V9
[-] Key Deleted : HKCU\Software\PRODUCTSETUP
[-] Key Deleted : HKLM\SOFTWARE\hdcode
[-] Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
[-] Key Deleted : HKLM\SOFTWARE\V9
[-] Key Deleted : HKLM\SOFTWARE\winzipersvc
[-] Key Deleted : HKLM\SOFTWARE\omniboxesSoftware
[-] Key Deleted : HKLM\SOFTWARE\WdsManPro
[-] Key Deleted : HKLM\SOFTWARE\TSv
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command []
***** [ Web browsers ] *****
[-] [C:\Users\Pepa\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.omniboxes.com/?type=hp&ts=144852009 ... UDV3NBUDVX
[-] [C:\Users\Pepa\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://www.omniboxes.com/webfavicon.ico
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5210 bytes] ##########
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : Pepa - PEPA-PC
# Running from : C:\Users\Pepa\Downloads\adwcleaner_5.022.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
[-] Service Deleted : winzipersvc
[-] Service Deleted : SSFK
[-] Service Deleted : WdsManPro
[-] Service Deleted : IhPul
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\WinZipper
[-] Folder Deleted : C:\Program Files (x86)\SFK
[-] Folder Deleted : C:\ProgramData\1WMiniPro1
[-] Folder Deleted : C:\ProgramData\BWMiniProB
[-] Folder Deleted : C:\ProgramData\tWMiniProt
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[-] Folder Deleted : C:\Users\Pepa\AppData\Roaming\WinZipper
[-] Folder Deleted : C:\Users\Pepa\AppData\Roaming\TSv
***** [ Files ] *****
[-] File Deleted : C:\Windows\SysNative\log\iSafeKrnlCall.log
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.001
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.7z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.arj
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.bz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.bzip2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.cab
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.cpio
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.deb
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.dmg
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.fat
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.gz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.gzip
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.hfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.iso
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lha
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lzh
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lzma
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.ntfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.rar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.rpm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.squashfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.swm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.taz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tbz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tbz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tgz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tpz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.txz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.vhd
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.wim
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.xar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.xz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.zip
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4F622628-7632-4B28-B184-D7BA0CA3273B}
[-] Key Deleted : HKCU\Software\V9
[-] Key Deleted : HKCU\Software\PRODUCTSETUP
[-] Key Deleted : HKLM\SOFTWARE\hdcode
[-] Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
[-] Key Deleted : HKLM\SOFTWARE\V9
[-] Key Deleted : HKLM\SOFTWARE\winzipersvc
[-] Key Deleted : HKLM\SOFTWARE\omniboxesSoftware
[-] Key Deleted : HKLM\SOFTWARE\WdsManPro
[-] Key Deleted : HKLM\SOFTWARE\TSv
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] Data Restored : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command []
***** [ Web browsers ] *****
[-] [C:\Users\Pepa\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.omniboxes.com/?type=hp&ts=144852009 ... UDV3NBUDVX
[-] [C:\Users\Pepa\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://www.omniboxes.com/webfavicon.ico
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5210 bytes] ##########
Re: Preventivka
pokial nie su problemy - hotovo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivka
Vypadá to, že nejsou. Super děkuji moc.
Re: Preventivka
rado sa stalo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?