Dobrý den,
když jsem se nyní pokoušel zapnout pc,tak to trvalo velmi dlouho a poté se vůbec nezapnul antivir Avast,který mám v pc nainstalovaný již dlouhou dobu.AVAST mi nejde spustit ani "ručně".
Proskenoval jsem tedy ihned pc programem SAS,ten nic kromě několika Cookie nenašel.
Chtěl bych Vás proto poprosit o kontrolu logu.
Předem děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2016-02-03 11:26:51
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 464 GB (78%) free of 593 GB
Total RAM: 3951 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:26:53, on 3.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Jan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (file missing)
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: DEBridge - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13384 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 24661664
\??\C:\windows\system32\conhost.exe "742355995-1098937812207504585240822023164380262-1575480691331847312-918024297
C:\windows\System32\spoolsv.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe"
"c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\windows\system\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
WLIDSvcM.exe 2328
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe"
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4536 CREDAT:267521 /prefetch:2
AdblockPlusEngine.exe cs-CZ
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4536 CREDAT:3937602 /prefetch:2
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1290391130-3812678142-814804901-10015_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1290391130-3812678142-814804901-10015 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Users\Jan\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForJan.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJan (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=FF_5&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.72.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.72.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 2132304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-26 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25 728840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 1471824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll [2016-01-22 462432]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-26 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll [2016-01-22 173152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-05-06 415032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25 617736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 2174760]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-04-05 8192]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-23 489472]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-08-17 14904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-01-22 7935904]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
C:\Program Files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2010-06-09 1128224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-08-05 98304]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2009-11-19 518656]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-08-11 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-10-01 256056]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-09 7021880]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-12-22 597040]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 03:37:02 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 03:36:59 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 03:36:58 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 03:36:58 ----A---- C:\windows\system32\occache.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 03:36:56 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 03:36:55 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 03:36:54 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 03:36:53 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 03:36:52 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieui.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 03:36:49 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\wininet.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\msrating.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 03:36:46 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 03:33:54 ----A---- C:\windows\system32\aeinv.dll
2016-01-13 03:33:48 ----A---- C:\windows\system32\qedit.dll
2016-01-13 03:33:47 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 03:33:23 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 03:33:19 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 03:33:18 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 03:33:18 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\mf.dll
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 03:33:14 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 03:33:13 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\quartz.dll
2016-01-13 03:33:11 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 03:33:11 ----A---- C:\windows\system32\evr.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 03:33:10 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 03:33:08 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\devenum.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 03:33:04 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 03:33:02 ----A---- C:\windows\system32\qasf.dll
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 03:33:01 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 03:32:53 ----A---- C:\windows\system32\win32k.sys
2016-01-13 03:32:50 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 03:32:50 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 03:32:40 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 03:32:39 ----A---- C:\windows\SYSWOW64\gdi32.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\generaltel.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\appraiser.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\invagent.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\devinv.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\aepic.dll
2016-01-13 03:32:25 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-01-13 03:32:25 ----A---- C:\windows\system32\acmigration.dll
2016-01-13 03:31:34 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 03:31:31 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 03:31:29 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\system32\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 03:31:16 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 03:31:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 03:31:15 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 03:31:13 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 03:31:13 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 03:31:12 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 03:31:11 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 03:31:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 03:31:06 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 03:31:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 03:31:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 03:31:03 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 03:31:02 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 03:31:00 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 03:30:59 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 03:30:59 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 03:30:57 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\secur32.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\credssp.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\lsass.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 03:30:55 ----A---- C:\windows\system32\smss.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 03:30:54 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 03:30:51 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\srcore.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\conhost.exe
2016-01-13 03:30:49 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 03:30:49 ----A---- C:\windows\system32\wow64.dll
2016-01-13 03:30:47 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 03:30:45 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 03:30:45 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 03:30:41 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 03:30:40 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 03:30:40 ----A---- C:\windows\system32\srclient.dll
2016-01-13 03:30:37 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 03:30:36 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 03:30:35 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 03:30:33 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 03:30:32 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 03:30:32 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 03:30:29 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 03:30:22 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:12 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:10 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:08 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 03:30:06 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 03:30:05 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 03:30:01 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 03:30:00 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 03:29:55 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 03:29:55 ----A---- C:\windows\system32\msobjs.dll
2016-01-08 05:59:53 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-02-03 11:26:52 ----D---- C:\windows\Temp
2016-02-03 11:26:52 ----D---- C:\Program Files\trend micro
2016-02-03 10:45:32 ----D---- C:\windows\system32\config
2016-02-03 10:32:58 ----D---- C:\ProgramData\HPQLOG
2016-02-03 10:32:20 ----D---- C:\ProgramData\PDFC
2016-02-03 10:31:56 ----A---- C:\windows\SYSWOW64\log.txt
2016-02-03 03:14:01 ----SHD---- C:\System Volume Information
2016-02-01 10:41:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-29 04:07:58 ----HD---- C:\ProgramData
2016-01-27 11:53:31 ----D---- C:\Program Files (x86)\Drakensang Online
2016-01-25 03:46:41 ----D---- C:\windows\SysWOW64
2016-01-22 10:21:17 ----D---- C:\Program Files\SUPERAntiSpyware
2016-01-22 04:25:28 ----SHD---- C:\windows\Installer
2016-01-22 04:25:27 ----D---- C:\Program Files (x86)\Common Files
2016-01-22 04:24:36 ----A---- C:\windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-01-22 04:24:19 ----D---- C:\Program Files (x86)\Java
2016-01-22 03:51:11 ----D---- C:\windows\Tasks
2016-01-22 03:51:11 ----D---- C:\windows\system32\Tasks
2016-01-22 03:50:52 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-21 10:13:32 ----D---- C:\windows\system32\drivers
2016-01-20 10:34:52 ----D---- C:\ProgramData\Oracle
2016-01-17 13:42:42 ----D---- C:\windows\system32\catroot2
2016-01-13 04:58:30 ----D---- C:\windows\System32
2016-01-13 04:58:30 ----D---- C:\windows\inf
2016-01-13 04:58:30 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-13 04:52:53 ----D---- C:\windows\winsxs
2016-01-13 04:48:03 ----D---- C:\Program Files\Internet Explorer
2016-01-13 04:47:55 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 04:47:53 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 04:47:43 ----D---- C:\windows\system32\cs-CZ
2016-01-13 04:47:41 ----D---- C:\windows\system32\en-US
2016-01-13 04:47:34 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 04:47:28 ----SD---- C:\windows\system32\CompatTel
2016-01-13 04:47:26 ----D---- C:\windows\system32\appraiser
2016-01-13 04:47:25 ----D---- C:\windows\AppPatch
2016-01-13 04:45:53 ----D---- C:\windows\system32\DriverStore
2016-01-13 04:44:48 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-13 04:44:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-13 04:41:24 ----D---- C:\windows\system32\MRT
2016-01-13 04:37:38 ----A---- C:\windows\system32\MRT.exe
2016-01-08 06:00:04 ----RD---- C:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-12-09 65224]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-12-09 273784]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2010-02-01 56648]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-06-04 60160]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2010-02-01 15688]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-12-09 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-01-21 1065208]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-01-21 464256]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-31 283200]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2010-02-01 58184]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-12-09 28656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-12-19 97648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-12-09 155304]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-08-05 6859776]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-08-04 264192]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys [2011-01-20 3063360]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-16 25912]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-23 515584]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1379376]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 32640]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;Bluetooth AMP USB Filter; C:\windows\system32\drivers\btwampfl.sys [2010-06-10 342056]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-06-10 102952]
S3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2010-06-10 135720]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-06-10 39464]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-06-10 21544]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2009-10-21 40760]
S3 EagleX64;EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 232480]
S3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 89216]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-08-17 172344]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-05-23 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-08-05 203264]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-06-09 952096]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-07-16 462160]
R2 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe [2010-05-10 90112]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-01 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-10-01 280120]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-13 30520]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-09-28 25800]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-08-11 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-23 271360]
R2 uArcCapture;ArcCapture; C:\windows\system\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 DEBridge;DEBridge; C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-01 704512]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
S2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-09 226440]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-08-17 133176]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 2019120]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2009-11-17 362040]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-01 146888]
S3 npggsvc;nProtect GameGuard Service; C:\windows\syswow64\GameMon.des [2014-12-01 3472368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-02-12 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nespustil se AVAST
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nespustil se AVAST
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nespustil se AVAST
Přikládám log,děkuji.
Problém stále přetrvává.
# AdwCleaner v5.032 - Logfile created 03/02/2016 at 17:45:42
# Updated 31/01/2016 by Xplode
# Database : 2016-02-02.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Jan - DROBEK
# Running from : C:\Users\Jan\Desktop\adwcleaner_5.032.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[-] Folder Deleted : C:\Users\Jan\AppData\LocalLow\Simple Adblock
***** [ Files ] *****
[-] File Deleted : C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\user.js
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\OCS
[-] Key Deleted : HKCU\Software\YahooPartnerToolbar
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Uniblue
[!] Key Not Deleted : HKLM\SOFTWARE\Uniblue\DriverScanner
[!] Key Not Deleted : HKU\S-1-5-21-1290391130-3812678142-814804901-1001\Software\Conduit
[!] Key Not Deleted : HKU\S-1-5-21-1290391130-3812678142-814804901-1001\Software\OCS
[!] Key Not Deleted : HKU\S-1-5-21-1290391130-3812678142-814804901-1001\Software\YahooPartnerToolbar
***** [ Web browsers ] *****
[-] [C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
[-] [C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=3&q={searchTerms}");
[-] [C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\prefs.js] [Preference] Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
[-] [C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\prefs.js] [Preference] Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2462 bytes] ##########
Problém stále přetrvává.
# AdwCleaner v5.032 - Logfile created 03/02/2016 at 17:45:42
# Updated 31/01/2016 by Xplode
# Database : 2016-02-02.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Jan - DROBEK
# Running from : C:\Users\Jan\Desktop\adwcleaner_5.032.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[-] Folder Deleted : C:\Users\Jan\AppData\LocalLow\Simple Adblock
***** [ Files ] *****
[-] File Deleted : C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\user.js
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\OCS
[-] Key Deleted : HKCU\Software\YahooPartnerToolbar
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\Uniblue
[!] Key Not Deleted : HKLM\SOFTWARE\Uniblue\DriverScanner
[!] Key Not Deleted : HKU\S-1-5-21-1290391130-3812678142-814804901-1001\Software\Conduit
[!] Key Not Deleted : HKU\S-1-5-21-1290391130-3812678142-814804901-1001\Software\OCS
[!] Key Not Deleted : HKU\S-1-5-21-1290391130-3812678142-814804901-1001\Software\YahooPartnerToolbar
***** [ Web browsers ] *****
[-] [C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultthis.engineName", "BS Player Customized Web Search");
[-] [C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1750559&SearchSource=3&q={searchTerms}");
[-] [C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\prefs.js] [Preference] Deleted : user_pref("extensions.wrc.SearchRules.ask.com.style", ".WRCN {display:none} #yui-main .tsrc_vnru .title + .WRCN, #yui-main #teoma-results .title + .WRCN {display:inline !important; background: url(\"I[...]
[-] [C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default\prefs.js] [Preference] Deleted : user_pref("extensions.wrc.SearchRules.ask.com.url", "^hxxp(s)?\\:\\/\\/(.+\\.)?ask\\.com\\/.*");
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2462 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nespustil se AVAST
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nespustil se AVAST
Zde je nový log,děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2016-02-03 19:06:31
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 464 GB (78%) free of 593 GB
Total RAM: 3951 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:06:34, on 3.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files\trend micro\Jan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (file missing)
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: DEBridge - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13354 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\svchost.exe -k NetworkService
atieclxx
C:\windows\system32\WLANExt.exe 23372512
\??\C:\windows\system32\conhost.exe "-14522566991177554072457735700-962658125-1565832404-1434462917-16828268581564328885
C:\windows\System32\spoolsv.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\windows\system\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\servicing\TrustedInstaller.exe
WLIDSvcM.exe 2876
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\windows\system32\sppsvc.exe
taskeng.exe {4A71CFCB-5E7D-46E8-947B-2B5465CE92B0}
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskeng.exe {3623951F-68C7-444B-9E68-C1845C6BB776}
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
taskeng.exe {0461CE1F-7818-4C00-B650-832FA71410FB}
"C:\Users\Jan\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForJan.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJan (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=FF_5&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.72.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.72.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 2132304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-26 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25 728840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 1471824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll [2016-01-22 462432]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-26 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll [2016-01-22 173152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-05-06 415032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25 617736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 2174760]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-04-05 8192]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-23 489472]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-08-17 14904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-01-22 7935904]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
C:\Program Files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2010-06-09 1128224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-08-05 98304]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2009-11-19 518656]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-08-11 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-10-01 256056]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-09 7021880]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-12-22 597040]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-03 19:06:31 ----D---- C:\rsit
2016-02-03 17:43:50 ----D---- C:\AdwCleaner
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 03:37:02 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 03:36:59 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 03:36:58 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 03:36:58 ----A---- C:\windows\system32\occache.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 03:36:56 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 03:36:55 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 03:36:54 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 03:36:53 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 03:36:52 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieui.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 03:36:49 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\wininet.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\msrating.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 03:36:46 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 03:33:54 ----A---- C:\windows\system32\aeinv.dll
2016-01-13 03:33:48 ----A---- C:\windows\system32\qedit.dll
2016-01-13 03:33:47 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 03:33:23 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 03:33:19 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 03:33:18 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 03:33:18 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\mf.dll
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 03:33:14 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 03:33:13 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\quartz.dll
2016-01-13 03:33:11 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 03:33:11 ----A---- C:\windows\system32\evr.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 03:33:10 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 03:33:08 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\devenum.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 03:33:04 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 03:33:02 ----A---- C:\windows\system32\qasf.dll
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 03:33:01 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 03:32:53 ----A---- C:\windows\system32\win32k.sys
2016-01-13 03:32:50 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 03:32:50 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 03:32:40 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 03:32:39 ----A---- C:\windows\SYSWOW64\gdi32.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\generaltel.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\appraiser.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\invagent.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\devinv.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\aepic.dll
2016-01-13 03:32:25 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-01-13 03:32:25 ----A---- C:\windows\system32\acmigration.dll
2016-01-13 03:31:34 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 03:31:31 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 03:31:29 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\system32\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 03:31:16 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 03:31:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 03:31:15 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 03:31:13 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 03:31:13 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 03:31:12 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 03:31:11 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 03:31:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 03:31:06 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 03:31:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 03:31:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 03:31:03 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 03:31:02 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 03:31:00 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 03:30:59 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 03:30:59 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 03:30:57 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\secur32.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\credssp.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\lsass.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 03:30:55 ----A---- C:\windows\system32\smss.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 03:30:54 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 03:30:51 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\srcore.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\conhost.exe
2016-01-13 03:30:49 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 03:30:49 ----A---- C:\windows\system32\wow64.dll
2016-01-13 03:30:47 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 03:30:45 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 03:30:45 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 03:30:41 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 03:30:40 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 03:30:40 ----A---- C:\windows\system32\srclient.dll
2016-01-13 03:30:37 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 03:30:36 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 03:30:35 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 03:30:33 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 03:30:32 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 03:30:32 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 03:30:29 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 03:30:22 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:12 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:10 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:08 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 03:30:06 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 03:30:05 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 03:30:01 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 03:30:00 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 03:29:55 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 03:29:55 ----A---- C:\windows\system32\msobjs.dll
2016-01-08 05:59:53 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-02-03 19:06:33 ----D---- C:\Program Files\trend micro
2016-02-03 19:05:16 ----D---- C:\windows\Temp
2016-02-03 18:58:33 ----D---- C:\windows\system32\config
2016-02-03 18:56:30 ----D---- C:\ProgramData\PDFC
2016-02-03 18:55:52 ----A---- C:\windows\SYSWOW64\log.txt
2016-02-03 10:32:58 ----D---- C:\ProgramData\HPQLOG
2016-02-03 03:14:01 ----SHD---- C:\System Volume Information
2016-02-01 10:41:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-29 04:07:58 ----HD---- C:\ProgramData
2016-01-27 11:53:31 ----D---- C:\Program Files (x86)\Drakensang Online
2016-01-25 03:46:41 ----D---- C:\windows\SysWOW64
2016-01-22 10:21:17 ----D---- C:\Program Files\SUPERAntiSpyware
2016-01-22 04:25:28 ----SHD---- C:\windows\Installer
2016-01-22 04:25:27 ----D---- C:\Program Files (x86)\Common Files
2016-01-22 04:24:36 ----A---- C:\windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-01-22 04:24:19 ----D---- C:\Program Files (x86)\Java
2016-01-22 03:51:11 ----D---- C:\windows\Tasks
2016-01-22 03:51:11 ----D---- C:\windows\system32\Tasks
2016-01-22 03:50:52 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-21 10:13:32 ----D---- C:\windows\system32\drivers
2016-01-20 10:34:52 ----D---- C:\ProgramData\Oracle
2016-01-17 13:42:42 ----D---- C:\windows\system32\catroot2
2016-01-13 04:58:30 ----D---- C:\windows\System32
2016-01-13 04:58:30 ----D---- C:\windows\inf
2016-01-13 04:58:30 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-13 04:52:53 ----D---- C:\windows\winsxs
2016-01-13 04:48:03 ----D---- C:\Program Files\Internet Explorer
2016-01-13 04:47:55 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 04:47:53 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 04:47:43 ----D---- C:\windows\system32\cs-CZ
2016-01-13 04:47:41 ----D---- C:\windows\system32\en-US
2016-01-13 04:47:34 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 04:47:28 ----SD---- C:\windows\system32\CompatTel
2016-01-13 04:47:26 ----D---- C:\windows\system32\appraiser
2016-01-13 04:47:25 ----D---- C:\windows\AppPatch
2016-01-13 04:45:53 ----D---- C:\windows\system32\DriverStore
2016-01-13 04:44:48 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-13 04:44:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-13 04:41:24 ----D---- C:\windows\system32\MRT
2016-01-13 04:37:38 ----A---- C:\windows\system32\MRT.exe
2016-01-08 06:00:04 ----RD---- C:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-12-09 65224]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-12-09 273784]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2010-02-01 56648]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-06-04 60160]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2010-02-01 15688]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-12-09 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-01-21 1065208]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-01-21 464256]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-31 283200]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2010-02-01 58184]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-12-09 28656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-12-19 97648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-12-09 155304]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-08-05 6859776]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-08-04 264192]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys [2011-01-20 3063360]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-16 25912]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-23 515584]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1379376]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 32640]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;Bluetooth AMP USB Filter; C:\windows\system32\drivers\btwampfl.sys [2010-06-10 342056]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-06-10 102952]
S3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2010-06-10 135720]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-06-10 39464]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-06-10 21544]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2009-10-21 40760]
S3 EagleX64;EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 232480]
S3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 89216]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-08-17 172344]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-05-23 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-08-05 203264]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-06-09 952096]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-07-16 462160]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-08-17 133176]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe [2010-05-10 90112]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-01 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-10-01 280120]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-13 30520]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-09-28 25800]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-08-11 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-23 271360]
R2 uArcCapture;ArcCapture; C:\windows\system\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 DEBridge;DEBridge; C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-01 704512]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
S2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-09 226440]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 2019120]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2009-11-17 362040]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-01 146888]
S3 npggsvc;nProtect GameGuard Service; C:\windows\syswow64\GameMon.des [2014-12-01 3472368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-02-12 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2016-02-03 19:06:31
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 464 GB (78%) free of 593 GB
Total RAM: 3951 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:06:34, on 3.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files\trend micro\Jan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll (file missing)
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: DEBridge - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13354 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
C:\windows\system32\svchost.exe -k NetworkService
atieclxx
C:\windows\system32\WLANExt.exe 23372512
\??\C:\windows\system32\conhost.exe "-14522566991177554072457735700-962658125-1565832404-1434462917-16828268581564328885
C:\windows\System32\spoolsv.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\windows\system\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\servicing\TrustedInstaller.exe
WLIDSvcM.exe 2876
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\windows\system32\sppsvc.exe
taskeng.exe {4A71CFCB-5E7D-46E8-947B-2B5465CE92B0}
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
taskeng.exe {3623951F-68C7-444B-9E68-C1845C6BB776}
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
taskeng.exe {0461CE1F-7818-4C00-B650-832FA71410FB}
"C:\Users\Jan\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForJan.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJan (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=FF_5&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.72.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.72.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 2132304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-26 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25 728840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 1471824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll [2016-01-22 462432]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-26 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll [2016-01-22 173152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-05-06 415032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25 617736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 2174760]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-04-05 8192]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-23 489472]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-08-17 14904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-01-22 7935904]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
C:\Program Files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2010-06-09 1128224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-08-05 98304]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2009-11-19 518656]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-08-11 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-10-01 256056]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-09 7021880]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-12-22 597040]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-03 19:06:31 ----D---- C:\rsit
2016-02-03 17:43:50 ----D---- C:\AdwCleaner
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 03:37:02 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 03:36:59 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 03:36:58 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 03:36:58 ----A---- C:\windows\system32\occache.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 03:36:56 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 03:36:55 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 03:36:54 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 03:36:53 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 03:36:52 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieui.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 03:36:49 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\wininet.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\msrating.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 03:36:46 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 03:33:54 ----A---- C:\windows\system32\aeinv.dll
2016-01-13 03:33:48 ----A---- C:\windows\system32\qedit.dll
2016-01-13 03:33:47 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 03:33:23 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 03:33:19 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 03:33:18 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 03:33:18 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\mf.dll
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 03:33:14 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 03:33:13 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\quartz.dll
2016-01-13 03:33:11 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 03:33:11 ----A---- C:\windows\system32\evr.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 03:33:10 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 03:33:08 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\devenum.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 03:33:04 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 03:33:02 ----A---- C:\windows\system32\qasf.dll
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 03:33:01 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 03:32:53 ----A---- C:\windows\system32\win32k.sys
2016-01-13 03:32:50 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 03:32:50 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 03:32:40 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 03:32:39 ----A---- C:\windows\SYSWOW64\gdi32.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\generaltel.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\appraiser.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\invagent.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\devinv.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\aepic.dll
2016-01-13 03:32:25 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-01-13 03:32:25 ----A---- C:\windows\system32\acmigration.dll
2016-01-13 03:31:34 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 03:31:31 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 03:31:29 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\system32\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 03:31:16 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 03:31:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 03:31:15 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 03:31:13 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 03:31:13 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 03:31:12 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 03:31:11 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 03:31:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 03:31:06 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 03:31:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 03:31:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 03:31:03 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 03:31:02 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 03:31:00 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 03:30:59 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 03:30:59 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 03:30:57 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\secur32.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\credssp.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\lsass.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 03:30:55 ----A---- C:\windows\system32\smss.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 03:30:54 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 03:30:51 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\srcore.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\conhost.exe
2016-01-13 03:30:49 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 03:30:49 ----A---- C:\windows\system32\wow64.dll
2016-01-13 03:30:47 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 03:30:45 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 03:30:45 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 03:30:41 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 03:30:40 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 03:30:40 ----A---- C:\windows\system32\srclient.dll
2016-01-13 03:30:37 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 03:30:36 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 03:30:35 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 03:30:33 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 03:30:32 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 03:30:32 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 03:30:29 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 03:30:22 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:12 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:10 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:08 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 03:30:06 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 03:30:05 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 03:30:01 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 03:30:00 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 03:29:55 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 03:29:55 ----A---- C:\windows\system32\msobjs.dll
2016-01-08 05:59:53 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-02-03 19:06:33 ----D---- C:\Program Files\trend micro
2016-02-03 19:05:16 ----D---- C:\windows\Temp
2016-02-03 18:58:33 ----D---- C:\windows\system32\config
2016-02-03 18:56:30 ----D---- C:\ProgramData\PDFC
2016-02-03 18:55:52 ----A---- C:\windows\SYSWOW64\log.txt
2016-02-03 10:32:58 ----D---- C:\ProgramData\HPQLOG
2016-02-03 03:14:01 ----SHD---- C:\System Volume Information
2016-02-01 10:41:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-29 04:07:58 ----HD---- C:\ProgramData
2016-01-27 11:53:31 ----D---- C:\Program Files (x86)\Drakensang Online
2016-01-25 03:46:41 ----D---- C:\windows\SysWOW64
2016-01-22 10:21:17 ----D---- C:\Program Files\SUPERAntiSpyware
2016-01-22 04:25:28 ----SHD---- C:\windows\Installer
2016-01-22 04:25:27 ----D---- C:\Program Files (x86)\Common Files
2016-01-22 04:24:36 ----A---- C:\windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-01-22 04:24:19 ----D---- C:\Program Files (x86)\Java
2016-01-22 03:51:11 ----D---- C:\windows\Tasks
2016-01-22 03:51:11 ----D---- C:\windows\system32\Tasks
2016-01-22 03:50:52 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-21 10:13:32 ----D---- C:\windows\system32\drivers
2016-01-20 10:34:52 ----D---- C:\ProgramData\Oracle
2016-01-17 13:42:42 ----D---- C:\windows\system32\catroot2
2016-01-13 04:58:30 ----D---- C:\windows\System32
2016-01-13 04:58:30 ----D---- C:\windows\inf
2016-01-13 04:58:30 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-13 04:52:53 ----D---- C:\windows\winsxs
2016-01-13 04:48:03 ----D---- C:\Program Files\Internet Explorer
2016-01-13 04:47:55 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 04:47:53 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 04:47:43 ----D---- C:\windows\system32\cs-CZ
2016-01-13 04:47:41 ----D---- C:\windows\system32\en-US
2016-01-13 04:47:34 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 04:47:28 ----SD---- C:\windows\system32\CompatTel
2016-01-13 04:47:26 ----D---- C:\windows\system32\appraiser
2016-01-13 04:47:25 ----D---- C:\windows\AppPatch
2016-01-13 04:45:53 ----D---- C:\windows\system32\DriverStore
2016-01-13 04:44:48 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-13 04:44:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-13 04:41:24 ----D---- C:\windows\system32\MRT
2016-01-13 04:37:38 ----A---- C:\windows\system32\MRT.exe
2016-01-08 06:00:04 ----RD---- C:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-12-09 65224]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-12-09 273784]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2010-02-01 56648]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-06-04 60160]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2010-02-01 15688]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-12-09 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-01-21 1065208]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-01-21 464256]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-31 283200]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2010-02-01 58184]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-12-09 28656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-12-19 97648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-12-09 155304]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-08-05 6859776]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-08-04 264192]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys [2011-01-20 3063360]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-16 25912]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-23 515584]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1379376]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 32640]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;Bluetooth AMP USB Filter; C:\windows\system32\drivers\btwampfl.sys [2010-06-10 342056]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-06-10 102952]
S3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2010-06-10 135720]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-06-10 39464]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-06-10 21544]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2009-10-21 40760]
S3 EagleX64;EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 232480]
S3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 89216]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-08-17 172344]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-05-23 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-08-05 203264]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-06-09 952096]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-07-16 462160]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-08-17 133176]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe [2010-05-10 90112]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-01 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-10-01 280120]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-13 30520]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-09-28 25800]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-08-11 1128952]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-23 271360]
R2 uArcCapture;ArcCapture; C:\windows\system\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 DEBridge;DEBridge; C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-01 704512]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
S2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-09 226440]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 2019120]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2009-11-17 362040]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-01 146888]
S3 npggsvc;nProtect GameGuard Service; C:\windows\syswow64\GameMon.des [2014-12-01 3472368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-02-12 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nespustil se AVAST
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nespustil se AVAST
Po skenu a následném restartu pc se mi zobrazil tento log z OTM.
Níže přikládám nový log RSIT.
Problém stále přetrvává,děkuji.
All processes killed
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{395610AE-C624-4f58-B89E-23733EA00F9A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3134413B-49B4-425C-98A5-893C1F195601}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Jan
->Temp folder emptied: 2547774781 bytes
->Temporary Internet Files folder emptied: 2514325711 bytes
->Java cache emptied: 498568 bytes
->FireFox cache emptied: 171649783 bytes
->Flash cache emptied: 14616 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4086227289 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 40032 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 755 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 100779938 bytes
RecycleBin emptied: 11650337 bytes
Total Files Cleaned = 8 996,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Jan
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 02042016_032603
Files moved on Reboot...
C:\Users\Jan\AppData\Local\Temp\Low\JavaDeployReg.log moved successfully.
C:\Users\Jan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File C:\Users\Jan\AppData\Local\Temp\WER7535.tmp.resp.erc.xml not found!
C:\Users\Jan\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File C:\windows\temp\WER2B8E.tmp.resp not found!
Registry entries deleted on Reboot...
-----------------------------------------------------------------------------------------------------------------------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2016-02-04 03:55:53
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 472 GB (80%) free of 593 GB
Total RAM: 3951 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:55:55, on 4.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Jan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: DEBridge - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13090 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 23833632
\??\C:\windows\system32\conhost.exe "14516416671110010048108996669-924908658212978184014446089941748219941-1075543809
C:\windows\System32\spoolsv.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\windows\system\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\windows\system32\SearchIndexer.exe /Embedding
WLIDSvcM.exe 2980
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3720 CREDAT:267521 /prefetch:2
AdblockPlusEngine.exe cs-CZ
C:\windows\system32\msiexec.exe /V
"C:\windows\System32\MsSpellCheckingFacility.exe" -Embedding
"C:\Users\Jan\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForJan.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJan (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=FF_5&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.72.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.72.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-26 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25 728840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 1471824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll [2016-01-22 462432]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-26 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll [2016-01-22 173152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-05-06 415032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25 617736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 2174760]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-04-05 8192]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-23 489472]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-08-17 14904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-01-22 7935904]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
C:\Program Files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2010-06-09 1128224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-08-05 98304]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2009-11-19 518656]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-08-11 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-10-01 256056]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-09 7021880]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-04 03:26:03 ----D---- C:\_OTM
2016-02-03 19:06:31 ----D---- C:\rsit
2016-02-03 17:43:50 ----D---- C:\AdwCleaner
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 03:37:02 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 03:36:59 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 03:36:58 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 03:36:58 ----A---- C:\windows\system32\occache.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 03:36:56 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 03:36:55 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 03:36:54 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 03:36:53 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 03:36:52 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieui.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 03:36:49 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\wininet.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\msrating.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 03:36:46 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 03:33:54 ----A---- C:\windows\system32\aeinv.dll
2016-01-13 03:33:48 ----A---- C:\windows\system32\qedit.dll
2016-01-13 03:33:47 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 03:33:23 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 03:33:19 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 03:33:18 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 03:33:18 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\mf.dll
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 03:33:14 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 03:33:13 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\quartz.dll
2016-01-13 03:33:11 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 03:33:11 ----A---- C:\windows\system32\evr.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 03:33:10 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 03:33:08 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\devenum.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 03:33:04 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 03:33:02 ----A---- C:\windows\system32\qasf.dll
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 03:33:01 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 03:32:53 ----A---- C:\windows\system32\win32k.sys
2016-01-13 03:32:50 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 03:32:50 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 03:32:40 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 03:32:39 ----A---- C:\windows\SYSWOW64\gdi32.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\generaltel.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\appraiser.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\invagent.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\devinv.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\aepic.dll
2016-01-13 03:32:25 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-01-13 03:32:25 ----A---- C:\windows\system32\acmigration.dll
2016-01-13 03:31:34 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 03:31:31 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 03:31:29 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\system32\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 03:31:16 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 03:31:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 03:31:15 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 03:31:13 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 03:31:13 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 03:31:12 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 03:31:11 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 03:31:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 03:31:06 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 03:31:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 03:31:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 03:31:03 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 03:31:02 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 03:31:00 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 03:30:59 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 03:30:59 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 03:30:57 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\secur32.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\credssp.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\lsass.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 03:30:55 ----A---- C:\windows\system32\smss.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 03:30:54 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 03:30:51 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\srcore.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\conhost.exe
2016-01-13 03:30:49 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 03:30:49 ----A---- C:\windows\system32\wow64.dll
2016-01-13 03:30:47 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 03:30:45 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 03:30:45 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 03:30:41 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 03:30:40 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 03:30:40 ----A---- C:\windows\system32\srclient.dll
2016-01-13 03:30:37 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 03:30:36 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 03:30:35 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 03:30:33 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 03:30:32 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 03:30:32 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 03:30:29 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 03:30:22 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:12 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:10 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:08 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 03:30:06 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 03:30:05 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 03:30:01 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 03:30:00 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 03:29:55 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 03:29:55 ----A---- C:\windows\system32\msobjs.dll
2016-01-08 05:59:53 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-02-04 03:55:54 ----D---- C:\windows\Temp
2016-02-04 03:55:54 ----D---- C:\Program Files\trend micro
2016-02-04 03:36:25 ----A---- C:\windows\SYSWOW64\log.txt
2016-02-04 03:10:02 ----D---- C:\windows\system32\config
2016-02-04 03:09:33 ----D---- C:\ProgramData\PDFC
2016-02-03 10:32:58 ----D---- C:\ProgramData\HPQLOG
2016-02-03 03:14:01 ----SHD---- C:\System Volume Information
2016-02-01 10:41:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-29 04:07:58 ----HD---- C:\ProgramData
2016-01-27 11:53:31 ----D---- C:\Program Files (x86)\Drakensang Online
2016-01-25 03:46:41 ----D---- C:\windows\SysWOW64
2016-01-22 10:21:17 ----D---- C:\Program Files\SUPERAntiSpyware
2016-01-22 04:25:28 ----SHD---- C:\windows\Installer
2016-01-22 04:25:27 ----D---- C:\Program Files (x86)\Common Files
2016-01-22 04:24:36 ----A---- C:\windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-01-22 04:24:19 ----D---- C:\Program Files (x86)\Java
2016-01-22 03:51:11 ----D---- C:\windows\Tasks
2016-01-22 03:51:11 ----D---- C:\windows\system32\Tasks
2016-01-22 03:50:52 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-21 10:13:32 ----D---- C:\windows\system32\drivers
2016-01-20 10:34:52 ----D---- C:\ProgramData\Oracle
2016-01-17 13:42:42 ----D---- C:\windows\system32\catroot2
2016-01-13 04:58:30 ----D---- C:\windows\System32
2016-01-13 04:58:30 ----D---- C:\windows\inf
2016-01-13 04:58:30 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-13 04:52:53 ----D---- C:\windows\winsxs
2016-01-13 04:48:03 ----D---- C:\Program Files\Internet Explorer
2016-01-13 04:47:55 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 04:47:53 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 04:47:43 ----D---- C:\windows\system32\cs-CZ
2016-01-13 04:47:41 ----D---- C:\windows\system32\en-US
2016-01-13 04:47:34 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 04:47:28 ----SD---- C:\windows\system32\CompatTel
2016-01-13 04:47:26 ----D---- C:\windows\system32\appraiser
2016-01-13 04:47:25 ----D---- C:\windows\AppPatch
2016-01-13 04:45:53 ----D---- C:\windows\system32\DriverStore
2016-01-13 04:44:48 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-13 04:44:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-13 04:41:24 ----D---- C:\windows\system32\MRT
2016-01-13 04:37:38 ----A---- C:\windows\system32\MRT.exe
2016-01-08 06:00:04 ----RD---- C:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-12-09 65224]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-12-09 273784]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2010-02-01 56648]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-06-04 60160]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2010-02-01 15688]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-12-09 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-01-21 1065208]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-01-21 464256]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-31 283200]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2010-02-01 58184]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-12-09 28656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-12-19 97648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-12-09 155304]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-08-05 6859776]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-08-04 264192]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys [2011-01-20 3063360]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-16 25912]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-23 515584]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1379376]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 32640]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;Bluetooth AMP USB Filter; C:\windows\system32\drivers\btwampfl.sys [2010-06-10 342056]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-06-10 102952]
S3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2010-06-10 135720]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-06-10 39464]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-06-10 21544]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2009-10-21 40760]
S3 EagleX64;EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 232480]
S3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 89216]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-08-17 172344]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-05-23 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-08-05 203264]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-06-09 952096]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-07-16 462160]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-08-17 133176]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-01 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-13 30520]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-09-28 25800]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-23 271360]
R2 uArcCapture;ArcCapture; C:\windows\system\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 DEBridge;DEBridge; C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-01 704512]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
S2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-09 226440]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
S2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe [2010-05-10 90112]
S2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-10-01 280120]
S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
S2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-08-11 1128952]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 2019120]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2009-11-17 362040]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-01 146888]
S3 npggsvc;nProtect GameGuard Service; C:\windows\syswow64\GameMon.des [2014-12-01 3472368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-02-12 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Níže přikládám nový log RSIT.
Problém stále přetrvává,děkuji.
All processes killed
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{395610AE-C624-4f58-B89E-23733EA00F9A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3134413B-49B4-425C-98A5-893C1F195601}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Jan
->Temp folder emptied: 2547774781 bytes
->Temporary Internet Files folder emptied: 2514325711 bytes
->Java cache emptied: 498568 bytes
->FireFox cache emptied: 171649783 bytes
->Flash cache emptied: 14616 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4086227289 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 40032 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 755 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 100779938 bytes
RecycleBin emptied: 11650337 bytes
Total Files Cleaned = 8 996,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Jan
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 02042016_032603
Files moved on Reboot...
C:\Users\Jan\AppData\Local\Temp\Low\JavaDeployReg.log moved successfully.
C:\Users\Jan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File C:\Users\Jan\AppData\Local\Temp\WER7535.tmp.resp.erc.xml not found!
C:\Users\Jan\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File C:\windows\temp\WER2B8E.tmp.resp not found!
Registry entries deleted on Reboot...
-----------------------------------------------------------------------------------------------------------------------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2016-02-04 03:55:53
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 472 GB (80%) free of 593 GB
Total RAM: 3951 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 3:55:55, on 4.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Jan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: DEBridge - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\windows\system32\GameMon.des.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\system\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13090 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\Hpservice.exe
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 23833632
\??\C:\windows\system32\conhost.exe "14516416671110010048108996669-924908658212978184014446089941748219941-1075543809
C:\windows\System32\spoolsv.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\windows\system\uArcCapture.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\windows\system32\SearchIndexer.exe /Embedding
WLIDSvcM.exe 2980
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3720 CREDAT:267521 /prefetch:2
AdblockPlusEngine.exe cs-CZ
C:\windows\system32\msiexec.exe /V
"C:\windows\System32\MsSpellCheckingFacility.exe" -Embedding
"C:\Users\Jan\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForJan.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForJan (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\247zljqe.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.google.cz/?gws_rd=ssl"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=FF_5&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.72.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.72.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_72\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-26 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25 728840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2011-05-02 1471824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\ssv.dll [2016-01-22 462432]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-26 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_72\bin\jp2ssv.dll [2016-01-22 173152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-05-06 415032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25 617736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 2174760]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-04-05 8192]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-05-23 489472]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-08-17 14904]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-01-22 7935904]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\4StoryPrePatch]
C:\Program Files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2010-06-09 1128224]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-08-05 98304]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2009-11-19 518656]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-08-11 658424]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-10-01 256056]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-09 7021880]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-04 03:26:03 ----D---- C:\_OTM
2016-02-03 19:06:31 ----D---- C:\rsit
2016-02-03 17:43:50 ----D---- C:\AdwCleaner
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-01-13 03:37:02 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-01-13 03:37:02 ----A---- C:\windows\system32\iertutil.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-01-13 03:37:01 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-01-13 03:37:01 ----A---- C:\windows\system32\ieetwcollector.exe
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\occache.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-01-13 03:37:00 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\iernonce.dll
2016-01-13 03:37:00 ----A---- C:\windows\system32\ie4uinit.exe
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-01-13 03:36:59 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-01-13 03:36:59 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-01-13 03:36:58 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-01-13 03:36:58 ----A---- C:\windows\system32\occache.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-01-13 03:36:57 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\urlmon.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-01-13 03:36:57 ----A---- C:\windows\system32\iedkcs32.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-01-13 03:36:56 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-01-13 03:36:56 ----A---- C:\windows\system32\msfeeds.dll
2016-01-13 03:36:56 ----A---- C:\windows\system32\dxtrans.dll
2016-01-13 03:36:55 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-01-13 03:36:54 ----A---- C:\windows\system32\iesetup.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-01-13 03:36:53 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-01-13 03:36:53 ----A---- C:\windows\system32\vbscript.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-01-13 03:36:52 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-01-13 03:36:52 ----A---- C:\windows\system32\jsproxy.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\mshtmled.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieui.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\ieframe.dll
2016-01-13 03:36:51 ----A---- C:\windows\system32\dxtmsft.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-01-13 03:36:50 ----A---- C:\windows\system32\ieUnatt.exe
2016-01-13 03:36:49 ----A---- C:\windows\system32\webcheck.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9diag.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript9.dll
2016-01-13 03:36:49 ----A---- C:\windows\system32\jscript.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\wininet.dll
2016-01-13 03:36:48 ----A---- C:\windows\system32\ieapfltr.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\msrating.dll
2016-01-13 03:36:47 ----A---- C:\windows\system32\MshtmlDac.dll
2016-01-13 03:36:46 ----A---- C:\windows\system32\mshtml.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\SYSWOW64\fixmapi.exe
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapistub.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\mapi32.dll
2016-01-13 03:33:59 ----A---- C:\windows\system32\fixmapi.exe
2016-01-13 03:33:54 ----A---- C:\windows\system32\aeinv.dll
2016-01-13 03:33:48 ----A---- C:\windows\system32\qedit.dll
2016-01-13 03:33:47 ----A---- C:\windows\SYSWOW64\qedit.dll
2016-01-13 03:33:23 ----A---- C:\windows\system32\msmpeg2adec.dll
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMVDECOD.DLL
2016-01-13 03:33:22 ----A---- C:\windows\system32\WMADMOD.DLL
2016-01-13 03:33:19 ----A---- C:\windows\SYSWOW64\msmpeg2adec.dll
2016-01-13 03:33:18 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2016-01-13 03:33:18 ----A---- C:\windows\system32\WMSPDMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\SYSWOW64\WMADMOD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\WMVSDECD.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\MSMPEG2ENC.DLL
2016-01-13 03:33:16 ----A---- C:\windows\system32\mf.dll
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\MSMPEG2ENC.DLL
2016-01-13 03:33:15 ----A---- C:\windows\SYSWOW64\mf.dll
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMVSDECD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMSPDMOD.DLL
2016-01-13 03:33:14 ----A---- C:\windows\SYSWOW64\WMADMOE.DLL
2016-01-13 03:33:14 ----A---- C:\windows\system32\WMADMOE.DLL
2016-01-13 03:33:13 ----A---- C:\windows\system32\mcmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\wmpmde.dll
2016-01-13 03:33:12 ----A---- C:\windows\system32\quartz.dll
2016-01-13 03:33:11 ----A---- C:\windows\system32\WMVENCOD.DLL
2016-01-13 03:33:11 ----A---- C:\windows\system32\evr.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\WMVENCOD.DLL
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\wmpmde.dll
2016-01-13 03:33:10 ----A---- C:\windows\SYSWOW64\COLORCNV.DLL
2016-01-13 03:33:10 ----A---- C:\windows\system32\COLORCNV.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\SYSWOW64\evr.dll
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMVXENCD.DLL
2016-01-13 03:33:09 ----A---- C:\windows\system32\WMSPDMOE.DLL
2016-01-13 03:33:08 ----A---- C:\windows\SYSWOW64\quartz.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\qdvd.dll
2016-01-13 03:33:07 ----A---- C:\windows\SYSWOW64\devenum.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\WMVSENCD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\VIDRESZR.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MPG4DECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MP4SDECD.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\MFWMAAEC.DLL
2016-01-13 03:33:07 ----A---- C:\windows\system32\mfplat.dll
2016-01-13 03:33:07 ----A---- C:\windows\system32\devenum.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\WMVSENCD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\msmpeg2vdec.dll
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MPG4DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\MFWMAAEC.DLL
2016-01-13 03:33:04 ----A---- C:\windows\SYSWOW64\mfplat.dll
2016-01-13 03:33:04 ----A---- C:\windows\system32\RESAMPLEDMO.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP43DECD.DLL
2016-01-13 03:33:04 ----A---- C:\windows\system32\MP3DMOD.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\WMSPDMOE.DLL
2016-01-13 03:33:03 ----A---- C:\windows\SYSWOW64\qasf.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\SysFxUI.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\qdvd.dll
2016-01-13 03:33:03 ----A---- C:\windows\system32\mfvdsp.dll
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\VIDRESZR.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\RESAMPLEDMO.DLL
2016-01-13 03:33:02 ----A---- C:\windows\SYSWOW64\MP4SDECD.DLL
2016-01-13 03:33:02 ----A---- C:\windows\system32\qasf.dll
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\MP3DMOD.DLL
2016-01-13 03:33:01 ----A---- C:\windows\SYSWOW64\mfvdsp.dll
2016-01-13 03:33:01 ----A---- C:\windows\system32\msmpeg2vdec.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\SYSWOW64\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\rrinstaller.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfps.dll
2016-01-13 03:33:00 ----A---- C:\windows\system32\mfpmp.exe
2016-01-13 03:33:00 ----A---- C:\windows\system32\drivers\portcls.sys
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\SYSWOW64\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\mferror.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\ksuser.dll
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmkaud.sys
2016-01-13 03:32:59 ----A---- C:\windows\system32\drivers\drmk.sys
2016-01-13 03:32:53 ----A---- C:\windows\system32\win32k.sys
2016-01-13 03:32:50 ----A---- C:\windows\SYSWOW64\advapi32.dll
2016-01-13 03:32:50 ----A---- C:\windows\system32\advapi32.dll
2016-01-13 03:32:40 ----A---- C:\windows\system32\gdi32.dll
2016-01-13 03:32:39 ----A---- C:\windows\SYSWOW64\gdi32.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\generaltel.dll
2016-01-13 03:32:28 ----A---- C:\windows\system32\appraiser.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\invagent.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\devinv.dll
2016-01-13 03:32:26 ----A---- C:\windows\system32\aepic.dll
2016-01-13 03:32:25 ----A---- C:\windows\system32\CompatTelRunner.exe
2016-01-13 03:32:25 ----A---- C:\windows\system32\acmigration.dll
2016-01-13 03:31:34 ----A---- C:\windows\system32\rpcrt4.dll
2016-01-13 03:31:31 ----A---- C:\windows\system32\ntoskrnl.exe
2016-01-13 03:31:29 ----A---- C:\windows\system32\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-01-13 03:31:28 ----A---- C:\windows\system32\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-01-13 03:31:18 ----A---- C:\windows\system32\lsasrv.dll
2016-01-13 03:31:16 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2016-01-13 03:31:15 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2016-01-13 03:31:15 ----A---- C:\windows\system32\ncrypt.dll
2016-01-13 03:31:13 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-01-13 03:31:13 ----A---- C:\windows\system32\kernel32.dll
2016-01-13 03:31:12 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\msv1_0.dll
2016-01-13 03:31:12 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-01-13 03:31:11 ----A---- C:\windows\system32\TSpkg.dll
2016-01-13 03:31:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-01-13 03:31:06 ----A---- C:\windows\system32\wdigest.dll
2016-01-13 03:31:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-01-13 03:31:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2016-01-13 03:31:03 ----A---- C:\windows\SYSWOW64\ntdll.dll
2016-01-13 03:31:02 ----A---- C:\windows\system32\ntdll.dll
2016-01-13 03:31:00 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-01-13 03:30:59 ----A---- C:\windows\system32\winsrv.dll
2016-01-13 03:30:59 ----A---- C:\windows\system32\cryptbase.dll
2016-01-13 03:30:57 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\sspicli.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\secur32.dll
2016-01-13 03:30:57 ----A---- C:\windows\system32\credssp.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\ntvdm64.dll
2016-01-13 03:30:56 ----A---- C:\windows\system32\lsass.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\sspisrv.dll
2016-01-13 03:30:55 ----A---- C:\windows\system32\smss.exe
2016-01-13 03:30:55 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-01-13 03:30:54 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-01-13 03:30:51 ----A---- C:\windows\system32\wow64win.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\srcore.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\KernelBase.dll
2016-01-13 03:30:50 ----A---- C:\windows\system32\conhost.exe
2016-01-13 03:30:49 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-01-13 03:30:49 ----A---- C:\windows\system32\wow64.dll
2016-01-13 03:30:47 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-01-13 03:30:45 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2016-01-13 03:30:45 ----A---- C:\windows\system32\csrsrv.dll
2016-01-13 03:30:41 ----A---- C:\windows\system32\wow64cpu.dll
2016-01-13 03:30:40 ----A---- C:\windows\SYSWOW64\srclient.dll
2016-01-13 03:30:40 ----A---- C:\windows\system32\srclient.dll
2016-01-13 03:30:37 ----A---- C:\windows\system32\rstrui.exe
2016-01-13 03:30:36 ----A---- C:\windows\system32\auditpol.exe
2016-01-13 03:30:35 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-01-13 03:30:33 ----A---- C:\windows\SYSWOW64\wow32.dll
2016-01-13 03:30:32 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2016-01-13 03:30:32 ----A---- C:\windows\system32\apisetschema.dll
2016-01-13 03:30:29 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:28 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-13 03:30:28 ----A---- C:\windows\SYSWOW64\instnm.exe
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:27 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-13 03:30:26 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-13 03:30:25 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-13 03:30:24 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-13 03:30:23 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-13 03:30:23 ----A---- C:\windows\SYSWOW64\setup16.exe
2016-01-13 03:30:22 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-13 03:30:17 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-13 03:30:16 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:15 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:14 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-13 03:30:12 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:10 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-13 03:30:08 ----A---- C:\windows\SYSWOW64\user.exe
2016-01-13 03:30:06 ----A---- C:\windows\system32\adtschema.dll
2016-01-13 03:30:05 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-01-13 03:30:01 ----A---- C:\windows\system32\msaudite.dll
2016-01-13 03:30:00 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-01-13 03:29:55 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-01-13 03:29:55 ----A---- C:\windows\system32\msobjs.dll
2016-01-08 05:59:53 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-02-04 03:55:54 ----D---- C:\windows\Temp
2016-02-04 03:55:54 ----D---- C:\Program Files\trend micro
2016-02-04 03:36:25 ----A---- C:\windows\SYSWOW64\log.txt
2016-02-04 03:10:02 ----D---- C:\windows\system32\config
2016-02-04 03:09:33 ----D---- C:\ProgramData\PDFC
2016-02-03 10:32:58 ----D---- C:\ProgramData\HPQLOG
2016-02-03 03:14:01 ----SHD---- C:\System Volume Information
2016-02-01 10:41:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-29 04:07:58 ----HD---- C:\ProgramData
2016-01-27 11:53:31 ----D---- C:\Program Files (x86)\Drakensang Online
2016-01-25 03:46:41 ----D---- C:\windows\SysWOW64
2016-01-22 10:21:17 ----D---- C:\Program Files\SUPERAntiSpyware
2016-01-22 04:25:28 ----SHD---- C:\windows\Installer
2016-01-22 04:25:27 ----D---- C:\Program Files (x86)\Common Files
2016-01-22 04:24:36 ----A---- C:\windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-01-22 04:24:19 ----D---- C:\Program Files (x86)\Java
2016-01-22 03:51:11 ----D---- C:\windows\Tasks
2016-01-22 03:51:11 ----D---- C:\windows\system32\Tasks
2016-01-22 03:50:52 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-01-21 10:13:32 ----D---- C:\windows\system32\drivers
2016-01-20 10:34:52 ----D---- C:\ProgramData\Oracle
2016-01-17 13:42:42 ----D---- C:\windows\system32\catroot2
2016-01-13 04:58:30 ----D---- C:\windows\System32
2016-01-13 04:58:30 ----D---- C:\windows\inf
2016-01-13 04:58:30 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-01-13 04:52:53 ----D---- C:\windows\winsxs
2016-01-13 04:48:03 ----D---- C:\Program Files\Internet Explorer
2016-01-13 04:47:55 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-01-13 04:47:53 ----D---- C:\windows\SYSWOW64\en-US
2016-01-13 04:47:43 ----D---- C:\windows\system32\cs-CZ
2016-01-13 04:47:41 ----D---- C:\windows\system32\en-US
2016-01-13 04:47:34 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-13 04:47:28 ----SD---- C:\windows\system32\CompatTel
2016-01-13 04:47:26 ----D---- C:\windows\system32\appraiser
2016-01-13 04:47:25 ----D---- C:\windows\AppPatch
2016-01-13 04:45:53 ----D---- C:\windows\system32\DriverStore
2016-01-13 04:44:48 ----D---- C:\Program Files\Microsoft Silverlight
2016-01-13 04:44:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-13 04:41:24 ----D---- C:\windows\system32\MRT
2016-01-13 04:37:38 ----A---- C:\windows\system32\MRT.exe
2016-01-08 06:00:04 ----RD---- C:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-12-09 65224]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-12-09 273784]
R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2010-02-01 56648]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-06-04 60160]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2010-02-01 15688]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-12-09 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-01-21 1065208]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-01-21 464256]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-31 283200]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2010-02-01 58184]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-12-09 28656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-12-19 97648]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-12-09 155304]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-08-05 6859776]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-08-04 264192]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl664.sys [2011-01-20 3063360]
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-16 25912]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\windows\system32\DRIVERS\stwrt64.sys [2013-05-23 515584]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1379376]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2009-12-04 32640]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;Bluetooth AMP USB Filter; C:\windows\system32\drivers\btwampfl.sys [2010-06-10 342056]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-06-10 102952]
S3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2010-06-10 135720]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-06-10 39464]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-06-10 21544]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2009-10-21 40760]
S3 EagleX64;EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 232480]
S3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2009-12-22 89216]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-08-17 172344]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2013-05-23 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-08-05 203264]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-06-09 952096]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2010-07-16 462160]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-08-17 133176]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 HpFkCryptService;Drive Encryption Service; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2010-02-01 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-05-13 30520]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2015-09-28 25800]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-03-16 113264]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-05-23 271360]
R2 uArcCapture;ArcCapture; C:\windows\system\uArcCapture.exe [2009-12-04 506472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 DEBridge;DEBridge; C:\Program Files\Hewlett-Packard\Drive Encryption\SbHpAuthenticatorService.exe [2010-02-01 704512]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
S2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-09 226440]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 HP ProtectTools Service;HP ProtectTools Service; C:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2010-10-19 32768]
S2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\32-bit\HPDayStarterService.exe [2010-05-10 90112]
S2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-10-01 280120]
S2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
S2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-08-11 1128952]
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 2019120]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2009-11-17 362040]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-12-12 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-01 146888]
S3 npggsvc;nProtect GameGuard Service; C:\windows\syswow64\GameMon.des [2014-12-01 3472368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-02-12 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nespustil se AVAST
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nespustil se AVAST
Všechno jede jak má,děkuji.
Ještě malý dovětek,
dneska odpoledne stále Avast nefungoval,tak jsem ho chtěl odinstalovat,dalo mi to na výběr i opravu,klik jsem na opravit Avast,po zhruba 10-ti minutách mi při stahování aktualizace (Avastu) zčernala obrazovka,tak jsem musel "natvrdo" vypnout pc.Po opětovném zapnutí,mi to napsalo "počítač nelze spustit" a začala oprava systému,trvalo to asi 25-30min.Od té doby je to v pořádku.
Prosím Vás,čím to bylo celé způsobené,myslím ten nefunkční Avast a pomalý start pc (cca 10-15min).Byl na vině vir,nebo to blokovalo něco jiného.Jde mi o to,abych se tomu pro příště snažil vyvarovat.
Moc Vám ještě jednou děkuji.
Můžete téma uzavřít.
Ještě malý dovětek,
dneska odpoledne stále Avast nefungoval,tak jsem ho chtěl odinstalovat,dalo mi to na výběr i opravu,klik jsem na opravit Avast,po zhruba 10-ti minutách mi při stahování aktualizace (Avastu) zčernala obrazovka,tak jsem musel "natvrdo" vypnout pc.Po opětovném zapnutí,mi to napsalo "počítač nelze spustit" a začala oprava systému,trvalo to asi 25-30min.Od té doby je to v pořádku.
Prosím Vás,čím to bylo celé způsobené,myslím ten nefunkční Avast a pomalý start pc (cca 10-15min).Byl na vině vir,nebo to blokovalo něco jiného.Jde mi o to,abych se tomu pro příště snažil vyvarovat.
Moc Vám ještě jednou děkuji.
Můžete téma uzavřít.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nespustil se AVAST
Pár AdWarů a nějaká zbytečnosti byly smazány. Nemohu ale jednoznačně tvrdit, že blokovaly Avast. Avast mohl mít vlastní chybu. Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?