Logfile of random's system information tool 1.10 (written by random/random)
Run by VS at 2016-02-16 14:42:19
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 420 GB (60%) free of 698 GB
Total RAM: 16319 MB (85% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:42:26, on 16.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal
Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\VS.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B48FDB6B-C184-46F4-8C89-B66FFB6C396D}: NameServer = 160.218.161.60 194.228.211.33
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5C798EF-8FED-4E9E-B0AA-B27A44E20A26}: NameServer = 160.218.161.60 194.228.211.33
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Communications - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 9350 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\ProgramData\O2 Internet\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/O2 Internet/UpdateDog/"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PSIService.exe
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 4056
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
C:\Windows\system32\svchost.exe -k HPService
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Windows Live\Mail\wlmail.exe"
"C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding
"C:\Program Files\AVAST Software\Avast\ng\ngtool.exe" build create -repair 1
\??\C:\Windows\system32\conhost.exe "-18937155901645742697-472957714-748544741199733320176964082847934279-658895944
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\AVAST Software\Avast\ng\mftutil.exe" -q -c -i "C:\ProgramData\AVAST Software\Avast\ng\NgBase\clone.cfg"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Users\VS\Downloads\RSITx64.exe"
taskeng.exe {D97C7651-C3E0-48DC-89E8-5571C420A997}
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default\extensions\
2020Player_IKEA@2020Technologies.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-14 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-14 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-07 10144288]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-04-07 908320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-04-15 2095400]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2010-04-01 558168]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2010-04-01 349272]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-04-23 861216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel File Shell Monitor]
C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-01-15 16200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader]
C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-04-12 222776]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-29 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-04-08 908368]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-02-16 7139768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-02-16 14:42:19 ----D---- C:\rsit
2016-02-14 20:07:23 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-02-14 17:11:16 ----A---- C:\Windows\system32\aswBoot.exe
2016-02-14 17:10:38 ----A---- C:\Windows\avastSS.scr
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\inseng.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\occache.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-09 20:03:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\iesetup.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-09 20:03:45 ----A---- C:\Windows\system32\vbscript.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\wininet.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\webcheck.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\msrating.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-09 20:02:41 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\appraiser.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\invagent.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\generaltel.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\devinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-02-09 20:02:40 ----A---- C:\Windows\system32\aeinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\acmigration.dll
2016-02-09 20:02:39 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-09 20:02:39 ----A---- C:\Windows\system32\iertutil.dll
2016-02-09 20:02:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-09 20:02:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-02-09 20:02:36 ----A---- C:\Windows\system32\urlmon.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieui.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieframe.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\mshtml.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-09 20:02:32 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups2.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wucltux.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuaueng.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuauclt.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpudd.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpcorets.dll
2016-02-09 19:59:19 ----A---- C:\Windows\system32\win32k.sys
2016-02-09 19:59:10 ----A---- C:\Windows\system32\ole32.dll
2016-02-09 19:59:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-02-09 19:58:49 ----A---- C:\Windows\system32\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-09 19:58:48 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-09 19:58:47 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-09 19:58:46 ----A---- C:\Windows\system32\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\kernel32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\advapi32.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\smss.exe
2016-02-09 19:58:42 ----A---- C:\Windows\system32\schannel.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-09 19:58:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64win.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64cpu.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\winsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srcore.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\rstrui.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\lsass.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\conhost.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\auditpol.exe
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\user.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\adtschema.dll
2016-02-09 19:58:23 ----A---- C:\Windows\system32\shell32.dll
2016-02-09 19:58:22 ----A---- C:\Windows\explorer.exe
2016-02-09 19:58:21 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-02-09 19:58:20 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\authui.dll
2016-01-29 20:00:13 ----D---- C:\Program Files (x86)\RAR Password Unlocker
======List of files/folders modified in the last 1 month======
2016-02-16 14:42:25 ----D---- C:\Program Files\trend micro
2016-02-16 14:42:22 ----D---- C:\Windows\Temp
2016-02-16 14:35:44 ----D---- C:\Windows\SYSWOW64\vbox
2016-02-16 14:35:42 ----D---- C:\Windows\system32\vbox
2016-02-16 14:32:04 ----SHD---- C:\Windows\Installer
2016-02-16 14:30:30 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-16 14:29:12 ----D---- C:\Windows\system32\LogFiles
2016-02-16 14:17:53 ----D---- C:\Windows\system32\config
2016-02-16 13:38:37 ----D---- C:\Windows\system32\wdi
2016-02-16 08:26:55 ----D---- C:\Users\VS\AppData\Roaming\SoftGrid Client
2016-02-15 12:49:33 ----D---- C:\ProgramData
2016-02-15 12:49:27 ----D---- C:\Windows\SysWOW64
2016-02-15 12:34:46 ----AD---- C:\Windows
2016-02-15 12:30:33 ----SHD---- C:\System Volume Information
2016-02-15 12:30:32 ----D---- C:\Windows\System32
2016-02-15 12:27:52 ----D---- C:\Windows\inf
2016-02-15 12:27:47 ----D---- C:\Windows\Minidump
2016-02-15 12:27:47 ----D---- C:\Windows\debug
2016-02-15 12:17:01 ----D---- C:\Users\VS\AppData\Roaming\602Installer
2016-02-15 12:13:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 20:44:41 ----A---- C:\Windows\wininit.ini
2016-02-14 20:44:40 ----RD---- C:\Program Files (x86)
2016-02-14 18:03:17 ----D---- C:\Windows\system32\Tasks
2016-02-14 18:02:28 ----D---- C:\Windows\system32\drivers
2016-02-14 17:11:34 ----D---- C:\Windows\winsxs
2016-02-14 17:11:14 ----D---- C:\ProgramData\AVAST Software
2016-02-14 17:09:51 ----D---- C:\Program Files\AVAST Software
2016-02-10 19:53:54 ----D---- C:\Windows\Microsoft.NET
2016-02-10 10:03:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-02-10 09:50:39 ----RSD---- C:\Windows\assembly
2016-02-10 09:38:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-10 09:22:44 ----D---- C:\Program Files\Windows Journal
2016-02-10 09:22:43 ----SD---- C:\Windows\system32\CompatTel
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\system32\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\appraiser
2016-02-10 09:22:42 ----D---- C:\Windows\AppPatch
2016-02-10 09:22:42 ----D---- C:\Program Files\Internet Explorer
2016-02-10 09:22:42 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-10 09:22:22 ----D---- C:\Windows\cs-CZ
2016-02-09 21:40:58 ----D---- C:\Windows\system32\MRT
2016-02-09 21:40:56 ----A---- C:\Windows\system32\MRT.exe
2016-02-09 21:32:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-02-09 20:01:32 ----D---- C:\Windows\system32\catroot2
2016-01-28 22:59:46 ----D---- C:\Windows\Prefetch
2016-01-28 19:37:58 ----D---- C:\Windows\system32\NDF
2016-01-28 19:26:27 ----D---- C:\Windows\Registration
2016-01-28 10:50:04 ----D---- C:\Users\VS\AppData\Roaming\FileZilla
2016-01-26 12:16:09 ----D---- C:\Windows\rescache
2016-01-21 21:37:23 ----D---- C:\ProgramData\boost_interprocess
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-02-14 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-02-14 287016]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 johci;JMicron 1394 Filter Driver; C:\Windows\system32\DRIVERS\johci.sys [2010-01-15 23152]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2016-02-14 154024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-02-14 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-02-14 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-02-14 1065720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-02-14 463744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-02-14 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-02-14 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-02-14 165344]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2016-02-14 310904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-03-29 6405632]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-03-29 188928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-04-07 2216960]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-08 123408]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-03-30 32296]
R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2009-12-25 76112]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2013-11-30 91648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-07 2338592]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 Ltn_stk7770P;PCTV LITEON TT128xDA based TV tuner device; C:\Windows\system32\DRIVERS\Ltn_stk7770P.sys [2010-04-13 917504]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-05 18432]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-04-15 319536]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-05 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys); C:\Windows\System32\Drivers\FPSensor.sys [2012-12-17 35888]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-03-30 39464]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2010-03-30 55336]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-03-30 294952]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-03-30 202792]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-03-30 53800]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-03-30 154792]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-03-30 264232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 14976]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2010-10-08 32768]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2013-11-30 226176]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\Windows\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
S3 hwusb_wwanecm;hwusb_wwanecm; C:\Windows\system32\DRIVERS\ew_wwanecm.sys [2014-09-30 380672]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2010-03-26 160880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys []
S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-03-29 202752]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-04-01 34392]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-02-14 237096]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-04-08 312400]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-04-23 867360]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2016-02-14 5570120]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe [2013-10-26 651856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-14 146888]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-18 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Bílá obrazovka po spuštění, pomalý start i náběh Windows...
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
viktor1771
- Návštěvník
- Příspěvky: 52
- Registrován: 30 čer 2014 21:02
-
viktor1771
- Návštěvník
- Příspěvky: 52
- Registrován: 30 čer 2014 21:02
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
Nahradil jsem 4x 2GB RAM za 4x 4GB RAM, ale počítač stále pracuje stejně pomalu.
Delší dobu se mi již stává, že uprostřed práce přestanou psát mísmenka M L I J , a mezerník. Posléze je musím stisknout všechny najednou a někdy se to opraví. Řekl bych, že to bude softwérová chyba, mačkání tlašítek vší silou ani vyšištění konektoru klávesníce a základové desky benzínem nepomohlo.
*
Dále jsem provedl čištění AdwCleanerem, protože jsem si při pročítání mnoha starších příspěvků všimnul, že je to první, co postiženému počítači dopooručíte, zde je log:
# AdwCleaner v5.033 - Logfile created 16/02/2016 at 14:56:18
# Updated 07/02/2016 by Xplode
# Database : 2016-02-15.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : VS - VS-ACER
# Running from : C:\Users\VS\Desktop\adwcleaner_5.033.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\Common Files\Speedbit
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitLord
[-] Folder Deleted : C:\Users\VS\AppData\Local\BitLord
[-] Folder Deleted : C:\Users\VS\AppData\Roaming\BitLord
***** [ Files ] *****
[-] File Deleted : C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default\user.js
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{82351433-9094-11D1-A24B-00A0C932C7DF}
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1209 bytes] ##########
Delší dobu se mi již stává, že uprostřed práce přestanou psát mísmenka M L I J , a mezerník. Posléze je musím stisknout všechny najednou a někdy se to opraví. Řekl bych, že to bude softwérová chyba, mačkání tlašítek vší silou ani vyšištění konektoru klávesníce a základové desky benzínem nepomohlo.
*
Dále jsem provedl čištění AdwCleanerem, protože jsem si při pročítání mnoha starších příspěvků všimnul, že je to první, co postiženému počítači dopooručíte, zde je log:
# AdwCleaner v5.033 - Logfile created 16/02/2016 at 14:56:18
# Updated 07/02/2016 by Xplode
# Database : 2016-02-15.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : VS - VS-ACER
# Running from : C:\Users\VS\Desktop\adwcleaner_5.033.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Program Files (x86)\Common Files\Speedbit
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitLord
[-] Folder Deleted : C:\Users\VS\AppData\Local\BitLord
[-] Folder Deleted : C:\Users\VS\AppData\Roaming\BitLord
***** [ Files ] *****
[-] File Deleted : C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default\user.js
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{82351433-9094-11D1-A24B-00A0C932C7DF}
***** [ Web browsers ] *****
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1209 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
viktor1771
- Návštěvník
- Příspěvky: 52
- Registrován: 30 čer 2014 21:02
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
Logfile of random's system information tool 1.10 (written by random/random)
Run by VS at 2016-02-19 16:47:39
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 420 GB (60%) free of 698 GB
Total RAM: 16319 MB (84% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:47:41, on 19.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal
Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\VS.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B48FDB6B-C184-46F4-8C89-B66FFB6C396D}: NameServer = 160.218.161.60 194.228.211.33
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5C798EF-8FED-4E9E-B0AA-B27A44E20A26}: NameServer = 160.218.161.60 194.228.211.33
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Communications - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 9240 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\ProgramData\O2 Internet\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/O2 Internet/UpdateDog/"
C:\Windows\SysWOW64\PSIService.exe
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 3808
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k HPService
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\servicing\TrustedInstaller.exe
taskeng.exe {E29E2C52-DB1F-4708-AA42-51812157DF80}
taskeng.exe {1503CB99-C89C-4D23-B76B-3E90089429DC}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe16_ Global\UsGthrCtrlFltPipeMssGthrPipe16 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\system32\GWX\GWX.exe /updateconfig
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "http://forum.viry.cz/viewtopic.php?f=13 ... &e=1437115"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\VS\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default\extensions\
2020Player_IKEA@2020Technologies.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-14 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-14 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-07 10144288]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-04-07 908320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-04-15 2095400]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2010-04-01 558168]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2010-04-01 349272]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-04-23 861216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel File Shell Monitor]
C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-01-15 16200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader]
C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-04-12 222776]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-29 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-04-08 908368]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-02-16 7139768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-02-16 14:53:19 ----D---- C:\AdwCleaner
2016-02-16 14:42:19 ----D---- C:\rsit
2016-02-14 20:07:23 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-02-14 17:11:16 ----A---- C:\Windows\system32\aswBoot.exe
2016-02-14 17:10:38 ----A---- C:\Windows\avastSS.scr
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\inseng.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\occache.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-09 20:03:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\iesetup.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-09 20:03:45 ----A---- C:\Windows\system32\vbscript.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\wininet.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\webcheck.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\msrating.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-09 20:02:41 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\appraiser.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\invagent.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\generaltel.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\devinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-02-09 20:02:40 ----A---- C:\Windows\system32\aeinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\acmigration.dll
2016-02-09 20:02:39 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-09 20:02:39 ----A---- C:\Windows\system32\iertutil.dll
2016-02-09 20:02:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-09 20:02:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-02-09 20:02:36 ----A---- C:\Windows\system32\urlmon.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieui.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieframe.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\mshtml.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-09 20:02:32 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups2.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wucltux.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuaueng.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuauclt.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpudd.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpcorets.dll
2016-02-09 19:59:19 ----A---- C:\Windows\system32\win32k.sys
2016-02-09 19:59:10 ----A---- C:\Windows\system32\ole32.dll
2016-02-09 19:59:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-02-09 19:58:49 ----A---- C:\Windows\system32\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-09 19:58:48 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-09 19:58:47 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-09 19:58:46 ----A---- C:\Windows\system32\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\kernel32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\advapi32.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\smss.exe
2016-02-09 19:58:42 ----A---- C:\Windows\system32\schannel.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-09 19:58:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64win.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64cpu.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\winsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srcore.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\rstrui.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\lsass.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\conhost.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\auditpol.exe
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\user.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\adtschema.dll
2016-02-09 19:58:23 ----A---- C:\Windows\system32\shell32.dll
2016-02-09 19:58:22 ----A---- C:\Windows\explorer.exe
2016-02-09 19:58:21 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-02-09 19:58:20 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\authui.dll
2016-01-29 20:00:13 ----D---- C:\Program Files (x86)\RAR Password Unlocker
======List of files/folders modified in the last 1 month======
2016-02-19 16:47:40 ----D---- C:\Program Files\trend micro
2016-02-19 16:47:39 ----D---- C:\Windows\Temp
2016-02-19 13:48:23 ----D---- C:\Windows\Prefetch
2016-02-19 12:40:38 ----SHD---- C:\System Volume Information
2016-02-19 12:35:28 ----SHD---- C:\Windows\Installer
2016-02-19 12:32:35 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-18 12:51:32 ----D---- C:\Windows\system32\config
2016-02-17 19:34:38 ----D---- C:\Users\VS\AppData\Roaming\SoftGrid Client
2016-02-16 18:06:36 ----D---- C:\Windows\SYSWOW64\vbox
2016-02-16 18:06:36 ----D---- C:\Windows\system32\vbox
2016-02-16 14:56:18 ----D---- C:\Program Files (x86)\Common Files
2016-02-16 14:29:12 ----D---- C:\Windows\system32\LogFiles
2016-02-16 13:38:37 ----D---- C:\Windows\system32\wdi
2016-02-15 12:49:33 ----D---- C:\ProgramData
2016-02-15 12:49:27 ----D---- C:\Windows\SysWOW64
2016-02-15 12:34:46 ----AD---- C:\Windows
2016-02-15 12:30:32 ----D---- C:\Windows\System32
2016-02-15 12:27:52 ----D---- C:\Windows\inf
2016-02-15 12:27:47 ----D---- C:\Windows\Minidump
2016-02-15 12:27:47 ----D---- C:\Windows\debug
2016-02-15 12:17:01 ----D---- C:\Users\VS\AppData\Roaming\602Installer
2016-02-15 12:13:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 20:44:41 ----A---- C:\Windows\wininit.ini
2016-02-14 20:44:40 ----RD---- C:\Program Files (x86)
2016-02-14 18:03:17 ----D---- C:\Windows\system32\Tasks
2016-02-14 18:02:28 ----D---- C:\Windows\system32\drivers
2016-02-14 17:11:34 ----D---- C:\Windows\winsxs
2016-02-14 17:11:14 ----D---- C:\ProgramData\AVAST Software
2016-02-14 17:09:51 ----D---- C:\Program Files\AVAST Software
2016-02-10 19:53:54 ----D---- C:\Windows\Microsoft.NET
2016-02-10 10:03:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-02-10 09:50:39 ----RSD---- C:\Windows\assembly
2016-02-10 09:38:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-10 09:22:44 ----D---- C:\Program Files\Windows Journal
2016-02-10 09:22:43 ----SD---- C:\Windows\system32\CompatTel
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\system32\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\appraiser
2016-02-10 09:22:42 ----D---- C:\Windows\AppPatch
2016-02-10 09:22:42 ----D---- C:\Program Files\Internet Explorer
2016-02-10 09:22:42 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-10 09:22:22 ----D---- C:\Windows\cs-CZ
2016-02-09 21:45:02 ----D---- C:\Windows\system32\MRT
2016-02-09 21:40:56 ----A---- C:\Windows\system32\MRT.exe
2016-02-09 21:32:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-02-09 20:01:32 ----D---- C:\Windows\system32\catroot2
2016-01-28 19:37:58 ----D---- C:\Windows\system32\NDF
2016-01-28 19:26:27 ----D---- C:\Windows\Registration
2016-01-28 10:50:04 ----D---- C:\Users\VS\AppData\Roaming\FileZilla
2016-01-26 12:16:09 ----D---- C:\Windows\rescache
2016-01-21 21:37:23 ----D---- C:\ProgramData\boost_interprocess
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-02-14 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-02-14 287016]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 johci;JMicron 1394 Filter Driver; C:\Windows\system32\DRIVERS\johci.sys [2010-01-15 23152]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2016-02-14 154024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-02-14 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-02-14 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-02-14 1065720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-02-14 463744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-02-14 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-02-14 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-02-14 165344]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2016-02-14 310904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-03-29 6405632]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-03-29 188928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-04-07 2216960]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-08 123408]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-03-30 32296]
R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2009-12-25 76112]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2013-11-30 91648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-07 2338592]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 Ltn_stk7770P;PCTV LITEON TT128xDA based TV tuner device; C:\Windows\system32\DRIVERS\Ltn_stk7770P.sys [2010-04-13 917504]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-05 18432]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-04-15 319536]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-05 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys); C:\Windows\System32\Drivers\FPSensor.sys [2012-12-17 35888]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-03-30 39464]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2010-03-30 55336]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-03-30 294952]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-03-30 202792]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-03-30 53800]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-03-30 154792]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-03-30 264232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 14976]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2010-10-08 32768]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2013-11-30 226176]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\Windows\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
S3 hwusb_wwanecm;hwusb_wwanecm; C:\Windows\system32\DRIVERS\ew_wwanecm.sys [2014-09-30 380672]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2010-03-26 160880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys []
S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-03-29 202752]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-04-01 34392]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-02-14 237096]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-04-08 312400]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-04-23 867360]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2016-02-14 5570120]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe [2013-10-26 651856]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-14 146888]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-18 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Run by VS at 2016-02-19 16:47:39
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 420 GB (60%) free of 698 GB
Total RAM: 16319 MB (84% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:47:41, on 19.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal
Running processes:
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\VS.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B48FDB6B-C184-46F4-8C89-B66FFB6C396D}: NameServer = 160.218.161.60 194.228.211.33
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5C798EF-8FED-4E9E-B0AA-B27A44E20A26}: NameServer = 160.218.161.60 194.228.211.33
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Communications - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 9240 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\ProgramData\DatacardService\DCSHelper.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\ProgramData\O2 Internet\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/O2 Internet/UpdateDog/"
C:\Windows\SysWOW64\PSIService.exe
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 3808
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k HPService
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\servicing\TrustedInstaller.exe
taskeng.exe {E29E2C52-DB1F-4708-AA42-51812157DF80}
taskeng.exe {1503CB99-C89C-4D23-B76B-3E90089429DC}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe16_ Global\UsGthrCtrlFltPipeMssGthrPipe16 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\system32\GWX\GWX.exe /updateconfig
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "http://forum.viry.cz/viewtopic.php?f=13 ... &e=1437115"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\VS\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default\extensions\
2020Player_IKEA@2020Technologies.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-14 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-14 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-07 10144288]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-04-07 908320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-04-15 2095400]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2010-04-01 558168]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2010-04-01 349272]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-04-23 861216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel File Shell Monitor]
C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-01-15 16200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader]
C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-04-12 222776]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-29 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-04-08 908368]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-02-16 7139768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-02-16 14:53:19 ----D---- C:\AdwCleaner
2016-02-16 14:42:19 ----D---- C:\rsit
2016-02-14 20:07:23 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-02-14 17:11:16 ----A---- C:\Windows\system32\aswBoot.exe
2016-02-14 17:10:38 ----A---- C:\Windows\avastSS.scr
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\inseng.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\occache.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-09 20:03:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\iesetup.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-09 20:03:45 ----A---- C:\Windows\system32\vbscript.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\wininet.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\webcheck.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\msrating.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-09 20:02:41 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\appraiser.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\invagent.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\generaltel.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\devinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-02-09 20:02:40 ----A---- C:\Windows\system32\aeinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\acmigration.dll
2016-02-09 20:02:39 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-09 20:02:39 ----A---- C:\Windows\system32\iertutil.dll
2016-02-09 20:02:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-09 20:02:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-02-09 20:02:36 ----A---- C:\Windows\system32\urlmon.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieui.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieframe.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\mshtml.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-09 20:02:32 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups2.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wucltux.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuaueng.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuauclt.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpudd.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpcorets.dll
2016-02-09 19:59:19 ----A---- C:\Windows\system32\win32k.sys
2016-02-09 19:59:10 ----A---- C:\Windows\system32\ole32.dll
2016-02-09 19:59:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-02-09 19:58:49 ----A---- C:\Windows\system32\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-09 19:58:48 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-09 19:58:47 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-09 19:58:46 ----A---- C:\Windows\system32\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\kernel32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\advapi32.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\smss.exe
2016-02-09 19:58:42 ----A---- C:\Windows\system32\schannel.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-09 19:58:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64win.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64cpu.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\winsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srcore.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\rstrui.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\lsass.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\conhost.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\auditpol.exe
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\user.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\adtschema.dll
2016-02-09 19:58:23 ----A---- C:\Windows\system32\shell32.dll
2016-02-09 19:58:22 ----A---- C:\Windows\explorer.exe
2016-02-09 19:58:21 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-02-09 19:58:20 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\authui.dll
2016-01-29 20:00:13 ----D---- C:\Program Files (x86)\RAR Password Unlocker
======List of files/folders modified in the last 1 month======
2016-02-19 16:47:40 ----D---- C:\Program Files\trend micro
2016-02-19 16:47:39 ----D---- C:\Windows\Temp
2016-02-19 13:48:23 ----D---- C:\Windows\Prefetch
2016-02-19 12:40:38 ----SHD---- C:\System Volume Information
2016-02-19 12:35:28 ----SHD---- C:\Windows\Installer
2016-02-19 12:32:35 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-18 12:51:32 ----D---- C:\Windows\system32\config
2016-02-17 19:34:38 ----D---- C:\Users\VS\AppData\Roaming\SoftGrid Client
2016-02-16 18:06:36 ----D---- C:\Windows\SYSWOW64\vbox
2016-02-16 18:06:36 ----D---- C:\Windows\system32\vbox
2016-02-16 14:56:18 ----D---- C:\Program Files (x86)\Common Files
2016-02-16 14:29:12 ----D---- C:\Windows\system32\LogFiles
2016-02-16 13:38:37 ----D---- C:\Windows\system32\wdi
2016-02-15 12:49:33 ----D---- C:\ProgramData
2016-02-15 12:49:27 ----D---- C:\Windows\SysWOW64
2016-02-15 12:34:46 ----AD---- C:\Windows
2016-02-15 12:30:32 ----D---- C:\Windows\System32
2016-02-15 12:27:52 ----D---- C:\Windows\inf
2016-02-15 12:27:47 ----D---- C:\Windows\Minidump
2016-02-15 12:27:47 ----D---- C:\Windows\debug
2016-02-15 12:17:01 ----D---- C:\Users\VS\AppData\Roaming\602Installer
2016-02-15 12:13:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 20:44:41 ----A---- C:\Windows\wininit.ini
2016-02-14 20:44:40 ----RD---- C:\Program Files (x86)
2016-02-14 18:03:17 ----D---- C:\Windows\system32\Tasks
2016-02-14 18:02:28 ----D---- C:\Windows\system32\drivers
2016-02-14 17:11:34 ----D---- C:\Windows\winsxs
2016-02-14 17:11:14 ----D---- C:\ProgramData\AVAST Software
2016-02-14 17:09:51 ----D---- C:\Program Files\AVAST Software
2016-02-10 19:53:54 ----D---- C:\Windows\Microsoft.NET
2016-02-10 10:03:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-02-10 09:50:39 ----RSD---- C:\Windows\assembly
2016-02-10 09:38:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-10 09:22:44 ----D---- C:\Program Files\Windows Journal
2016-02-10 09:22:43 ----SD---- C:\Windows\system32\CompatTel
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\system32\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\appraiser
2016-02-10 09:22:42 ----D---- C:\Windows\AppPatch
2016-02-10 09:22:42 ----D---- C:\Program Files\Internet Explorer
2016-02-10 09:22:42 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-10 09:22:22 ----D---- C:\Windows\cs-CZ
2016-02-09 21:45:02 ----D---- C:\Windows\system32\MRT
2016-02-09 21:40:56 ----A---- C:\Windows\system32\MRT.exe
2016-02-09 21:32:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-02-09 20:01:32 ----D---- C:\Windows\system32\catroot2
2016-01-28 19:37:58 ----D---- C:\Windows\system32\NDF
2016-01-28 19:26:27 ----D---- C:\Windows\Registration
2016-01-28 10:50:04 ----D---- C:\Users\VS\AppData\Roaming\FileZilla
2016-01-26 12:16:09 ----D---- C:\Windows\rescache
2016-01-21 21:37:23 ----D---- C:\ProgramData\boost_interprocess
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-02-14 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-02-14 287016]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 johci;JMicron 1394 Filter Driver; C:\Windows\system32\DRIVERS\johci.sys [2010-01-15 23152]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2016-02-14 154024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-02-14 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-02-14 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-02-14 1065720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-02-14 463744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-02-14 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-02-14 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-02-14 165344]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2016-02-14 310904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-03-29 6405632]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-03-29 188928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-04-07 2216960]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-08 123408]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-03-30 32296]
R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2009-12-25 76112]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2013-11-30 91648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-07 2338592]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 Ltn_stk7770P;PCTV LITEON TT128xDA based TV tuner device; C:\Windows\system32\DRIVERS\Ltn_stk7770P.sys [2010-04-13 917504]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-05 18432]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-04-15 319536]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-05 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys); C:\Windows\System32\Drivers\FPSensor.sys [2012-12-17 35888]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-03-30 39464]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2010-03-30 55336]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-03-30 294952]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-03-30 202792]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-03-30 53800]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-03-30 154792]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-03-30 264232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 14976]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2010-10-08 32768]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2013-11-30 226176]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\Windows\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
S3 hwusb_wwanecm;hwusb_wwanecm; C:\Windows\system32\DRIVERS\ew_wwanecm.sys [2014-09-30 380672]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2010-03-26 160880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys []
S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-03-29 202752]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-04-01 34392]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-02-14 237096]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-04-08 312400]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-04-23 867360]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2016-02-14 5570120]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe [2013-10-26 651856]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-14 146888]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-18 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
:cxommands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
viktor1771
- Návštěvník
- Příspěvky: 52
- Registrován: 30 čer 2014 21:02
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
Po restartu se na ploše objevilo pár skrytých souborů, které nepotřebuji (složka obrázků z roku 2009, dvakrát Desktop.ini, Thumbs.db a asi tři texťáky .DOC).
Logfile of random's system information tool 1.10 (written by random/random)
Run by VS at 2016-02-19 17:37:20
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 420 GB (60%) free of 698 GB
Total RAM: 16319 MB (87% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:37:26, on 19.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
C:\Program Files\trend micro\VS.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B48FDB6B-C184-46F4-8C89-B66FFB6C396D}: NameServer = 160.218.161.60 194.228.211.33
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5C798EF-8FED-4E9E-B0AA-B27A44E20A26}: NameServer = 160.218.161.60 194.228.211.33
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Communications - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 9418 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
taskeng.exe {638ED1D8-1976-47B5-BF67-60B4003404F8}
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\ProgramData\DatacardService\DCSHelper.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\ProgramData\O2 Internet\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/O2 Internet/UpdateDog/"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PSIService.exe
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 3856
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
C:\Windows\system32\svchost.exe -k HPService
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe" "Microsoft Word Starter 2010 9014006604050000" /vp "C:\Users\VS\Desktop\~$bídka VŘ.docx"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe" /start IDLE_APP_EVENT_{90140011-0066-0405-0000-0000000FF1CE}
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Users\VS\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Windows Live\Mail\wlmail.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default\extensions\
2020Player_IKEA@2020Technologies.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-14 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-14 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-07 10144288]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-04-07 908320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-04-15 2095400]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2010-04-01 558168]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2010-04-01 349272]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-04-23 861216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel File Shell Monitor]
C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-01-15 16200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader]
C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-04-12 222776]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-29 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-04-08 908368]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-02-16 7139768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-02-19 17:30:03 ----D---- C:\_OTM
2016-02-16 14:53:19 ----D---- C:\AdwCleaner
2016-02-16 14:42:19 ----D---- C:\rsit
2016-02-14 20:07:23 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-02-14 17:11:16 ----A---- C:\Windows\system32\aswBoot.exe
2016-02-14 17:10:38 ----A---- C:\Windows\avastSS.scr
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\inseng.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\occache.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-09 20:03:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\iesetup.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-09 20:03:45 ----A---- C:\Windows\system32\vbscript.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\wininet.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\webcheck.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\msrating.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-09 20:02:41 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\appraiser.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\invagent.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\generaltel.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\devinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-02-09 20:02:40 ----A---- C:\Windows\system32\aeinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\acmigration.dll
2016-02-09 20:02:39 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-09 20:02:39 ----A---- C:\Windows\system32\iertutil.dll
2016-02-09 20:02:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-09 20:02:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-02-09 20:02:36 ----A---- C:\Windows\system32\urlmon.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieui.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieframe.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\mshtml.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-09 20:02:32 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups2.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wucltux.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuaueng.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuauclt.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpudd.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpcorets.dll
2016-02-09 19:59:19 ----A---- C:\Windows\system32\win32k.sys
2016-02-09 19:59:10 ----A---- C:\Windows\system32\ole32.dll
2016-02-09 19:59:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-02-09 19:58:49 ----A---- C:\Windows\system32\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-09 19:58:48 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-09 19:58:47 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-09 19:58:46 ----A---- C:\Windows\system32\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\kernel32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\advapi32.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\smss.exe
2016-02-09 19:58:42 ----A---- C:\Windows\system32\schannel.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-09 19:58:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64win.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64cpu.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\winsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srcore.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\rstrui.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\lsass.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\conhost.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\auditpol.exe
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\user.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\adtschema.dll
2016-02-09 19:58:23 ----A---- C:\Windows\system32\shell32.dll
2016-02-09 19:58:22 ----A---- C:\Windows\explorer.exe
2016-02-09 19:58:21 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-02-09 19:58:20 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\authui.dll
2016-01-29 20:00:13 ----D---- C:\Program Files (x86)\RAR Password Unlocker
======List of files/folders modified in the last 1 month======
2016-02-19 17:37:22 ----D---- C:\Program Files\trend micro
2016-02-19 17:37:21 ----D---- C:\Windows\Temp
2016-02-19 17:34:15 ----SHD---- C:\Windows\Installer
2016-02-19 17:33:06 ----D---- C:\Windows\Prefetch
2016-02-19 17:31:55 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-19 12:40:38 ----SHD---- C:\System Volume Information
2016-02-18 12:51:32 ----D---- C:\Windows\system32\config
2016-02-17 19:34:38 ----D---- C:\Users\VS\AppData\Roaming\SoftGrid Client
2016-02-16 18:06:36 ----D---- C:\Windows\SYSWOW64\vbox
2016-02-16 18:06:36 ----D---- C:\Windows\system32\vbox
2016-02-16 14:56:18 ----D---- C:\Program Files (x86)\Common Files
2016-02-16 14:29:12 ----D---- C:\Windows\system32\LogFiles
2016-02-16 13:38:37 ----D---- C:\Windows\system32\wdi
2016-02-15 12:49:33 ----D---- C:\ProgramData
2016-02-15 12:49:27 ----D---- C:\Windows\SysWOW64
2016-02-15 12:34:46 ----AD---- C:\Windows
2016-02-15 12:30:32 ----D---- C:\Windows\System32
2016-02-15 12:27:52 ----D---- C:\Windows\inf
2016-02-15 12:27:47 ----D---- C:\Windows\Minidump
2016-02-15 12:27:47 ----D---- C:\Windows\debug
2016-02-15 12:17:01 ----D---- C:\Users\VS\AppData\Roaming\602Installer
2016-02-15 12:13:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 20:44:41 ----A---- C:\Windows\wininit.ini
2016-02-14 20:44:40 ----RD---- C:\Program Files (x86)
2016-02-14 18:03:17 ----D---- C:\Windows\system32\Tasks
2016-02-14 18:02:28 ----D---- C:\Windows\system32\drivers
2016-02-14 17:11:34 ----D---- C:\Windows\winsxs
2016-02-14 17:11:14 ----D---- C:\ProgramData\AVAST Software
2016-02-14 17:09:51 ----D---- C:\Program Files\AVAST Software
2016-02-10 19:53:54 ----D---- C:\Windows\Microsoft.NET
2016-02-10 10:03:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-02-10 09:50:39 ----RSD---- C:\Windows\assembly
2016-02-10 09:38:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-10 09:22:44 ----D---- C:\Program Files\Windows Journal
2016-02-10 09:22:43 ----SD---- C:\Windows\system32\CompatTel
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\system32\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\appraiser
2016-02-10 09:22:42 ----D---- C:\Windows\AppPatch
2016-02-10 09:22:42 ----D---- C:\Program Files\Internet Explorer
2016-02-10 09:22:42 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-10 09:22:22 ----D---- C:\Windows\cs-CZ
2016-02-09 21:45:02 ----D---- C:\Windows\system32\MRT
2016-02-09 21:40:56 ----A---- C:\Windows\system32\MRT.exe
2016-02-09 21:32:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-02-09 20:01:32 ----D---- C:\Windows\system32\catroot2
2016-01-28 19:37:58 ----D---- C:\Windows\system32\NDF
2016-01-28 19:26:27 ----D---- C:\Windows\Registration
2016-01-28 10:50:04 ----D---- C:\Users\VS\AppData\Roaming\FileZilla
2016-01-26 12:16:09 ----D---- C:\Windows\rescache
2016-01-21 21:37:23 ----D---- C:\ProgramData\boost_interprocess
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-02-14 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-02-14 287016]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 johci;JMicron 1394 Filter Driver; C:\Windows\system32\DRIVERS\johci.sys [2010-01-15 23152]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2016-02-14 154024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-02-14 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-02-14 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-02-14 1065720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-02-14 463744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-02-14 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-02-14 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-02-14 165344]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2016-02-14 310904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-03-29 6405632]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-03-29 188928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-04-07 2216960]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-08 123408]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-03-30 32296]
R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2009-12-25 76112]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2013-11-30 91648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-07 2338592]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 Ltn_stk7770P;PCTV LITEON TT128xDA based TV tuner device; C:\Windows\system32\DRIVERS\Ltn_stk7770P.sys [2010-04-13 917504]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-05 18432]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-04-15 319536]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-05 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys); C:\Windows\System32\Drivers\FPSensor.sys [2012-12-17 35888]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-03-30 39464]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2010-03-30 55336]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-03-30 294952]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-03-30 202792]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-03-30 53800]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-03-30 154792]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-03-30 264232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 14976]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2010-10-08 32768]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2013-11-30 226176]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\Windows\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
S3 hwusb_wwanecm;hwusb_wwanecm; C:\Windows\system32\DRIVERS\ew_wwanecm.sys [2014-09-30 380672]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2010-03-26 160880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys []
S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-03-29 202752]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-04-01 34392]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-02-14 237096]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-04-08 312400]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-04-23 867360]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2016-02-14 5570120]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe [2013-10-26 651856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-14 146888]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-18 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by VS at 2016-02-19 17:37:20
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 420 GB (60%) free of 698 GB
Total RAM: 16319 MB (87% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:37:26, on 19.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
C:\Program Files\trend micro\VS.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B48FDB6B-C184-46F4-8C89-B66FFB6C396D}: NameServer = 160.218.161.60 194.228.211.33
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5C798EF-8FED-4E9E-B0AA-B27A44E20A26}: NameServer = 160.218.161.60 194.228.211.33
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Communications - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2 Internet. OUC (O2 Internet. RunOuc) - Unknown owner - C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 9418 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
taskeng.exe {638ED1D8-1976-47B5-BF67-60B4003404F8}
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\ProgramData\DatacardService\HWDeviceService64.exe" -/service
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\ProgramData\DatacardService\DCSHelper.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"C:\ProgramData\O2 Internet\OnlineUpdate\ouc.exe" "C:/Program Files (x86)/O2 Internet/UpdateDog/"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PSIService.exe
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
WLIDSvcM.exe 3856
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
C:\Windows\system32\svchost.exe -k HPService
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe" "Microsoft Word Starter 2010 9014006604050000" /vp "C:\Users\VS\Desktop\~$bídka VŘ.docx"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe" /start IDLE_APP_EVENT_{90140011-0066-0405-0000-0000000FF1CE}
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Users\VS\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Windows Live\Mail\wlmail.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.306 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Users\VS\AppData\Roaming\Mozilla\Firefox\Profiles\3zh8iufq.default\extensions\
2020Player_IKEA@2020Technologies.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-14 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-14 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-07 10144288]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-04-07 908320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-04-15 2095400]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2010-04-01 558168]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2010-04-01 349272]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-04-23 861216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel File Shell Monitor]
C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-01-15 16200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader]
C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-04-12 222776]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-04 284696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-29 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-04-08 908368]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-02-16 7139768]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13 1085656]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-02-19 17:30:03 ----D---- C:\_OTM
2016-02-16 14:53:19 ----D---- C:\AdwCleaner
2016-02-16 14:42:19 ----D---- C:\rsit
2016-02-14 20:07:23 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-02-14 17:11:16 ----A---- C:\Windows\system32\aswBoot.exe
2016-02-14 17:10:38 ----A---- C:\Windows\avastSS.scr
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\iernonce.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-09 20:03:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-09 20:03:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\inseng.dll
2016-02-09 20:03:49 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-02-09 20:03:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\occache.dll
2016-02-09 20:03:48 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-09 20:03:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-09 20:03:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-09 20:03:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\iesetup.dll
2016-02-09 20:03:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-02-09 20:03:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-09 20:03:45 ----A---- C:\Windows\system32\vbscript.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-02-09 20:03:44 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-09 20:03:44 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-09 20:03:43 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\wininet.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\webcheck.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript9.dll
2016-02-09 20:03:42 ----A---- C:\Windows\system32\jscript.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\msrating.dll
2016-02-09 20:03:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-09 20:02:41 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\InkEd.dll
2016-02-09 20:02:41 ----A---- C:\Windows\system32\appraiser.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\invagent.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\generaltel.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\devinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-02-09 20:02:40 ----A---- C:\Windows\system32\aeinv.dll
2016-02-09 20:02:40 ----A---- C:\Windows\system32\acmigration.dll
2016-02-09 20:02:39 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-09 20:02:39 ----A---- C:\Windows\system32\iertutil.dll
2016-02-09 20:02:38 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-02-09 20:02:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-09 20:02:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-02-09 20:02:36 ----A---- C:\Windows\system32\urlmon.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieui.dll
2016-02-09 20:02:36 ----A---- C:\Windows\system32\ieframe.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\mshtml.dll
2016-02-09 20:02:35 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-09 20:02:32 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuwebv.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups2.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wups.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wudriver.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wucltux.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuaueng.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuauclt.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapp.exe
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wuapi.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-02-09 19:59:41 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpudd.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-02-09 19:59:39 ----A---- C:\Windows\system32\rdpcorets.dll
2016-02-09 19:59:19 ----A---- C:\Windows\system32\win32k.sys
2016-02-09 19:59:10 ----A---- C:\Windows\system32\ole32.dll
2016-02-09 19:59:09 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-02-09 19:58:49 ----A---- C:\Windows\system32\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-09 19:58:48 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-09 19:58:48 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-09 19:58:47 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-09 19:58:46 ----A---- C:\Windows\system32\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-09 19:58:44 ----A---- C:\Windows\system32\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-09 19:58:43 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\kernel32.dll
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-09 19:58:43 ----A---- C:\Windows\system32\advapi32.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\smss.exe
2016-02-09 19:58:42 ----A---- C:\Windows\system32\schannel.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-09 19:58:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-09 19:58:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64win.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64cpu.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wow64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\winsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\wdigest.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\sspicli.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srcore.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\srclient.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\secur32.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\rstrui.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ntvdm64.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\lsass.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-09 19:58:41 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\credssp.dll
2016-02-09 19:58:41 ----A---- C:\Windows\system32\conhost.exe
2016-02-09 19:58:41 ----A---- C:\Windows\system32\auditpol.exe
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-09 19:58:39 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-09 19:58:38 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\user.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msobjs.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\msaudite.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-09 19:58:38 ----A---- C:\Windows\system32\adtschema.dll
2016-02-09 19:58:23 ----A---- C:\Windows\system32\shell32.dll
2016-02-09 19:58:22 ----A---- C:\Windows\explorer.exe
2016-02-09 19:58:21 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-02-09 19:58:20 ----A---- C:\Windows\SYSWOW64\explorer.exe
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-02-09 19:58:19 ----A---- C:\Windows\system32\authui.dll
2016-01-29 20:00:13 ----D---- C:\Program Files (x86)\RAR Password Unlocker
======List of files/folders modified in the last 1 month======
2016-02-19 17:37:22 ----D---- C:\Program Files\trend micro
2016-02-19 17:37:21 ----D---- C:\Windows\Temp
2016-02-19 17:34:15 ----SHD---- C:\Windows\Installer
2016-02-19 17:33:06 ----D---- C:\Windows\Prefetch
2016-02-19 17:31:55 ----A---- C:\Windows\SYSWOW64\log.txt
2016-02-19 12:40:38 ----SHD---- C:\System Volume Information
2016-02-18 12:51:32 ----D---- C:\Windows\system32\config
2016-02-17 19:34:38 ----D---- C:\Users\VS\AppData\Roaming\SoftGrid Client
2016-02-16 18:06:36 ----D---- C:\Windows\SYSWOW64\vbox
2016-02-16 18:06:36 ----D---- C:\Windows\system32\vbox
2016-02-16 14:56:18 ----D---- C:\Program Files (x86)\Common Files
2016-02-16 14:29:12 ----D---- C:\Windows\system32\LogFiles
2016-02-16 13:38:37 ----D---- C:\Windows\system32\wdi
2016-02-15 12:49:33 ----D---- C:\ProgramData
2016-02-15 12:49:27 ----D---- C:\Windows\SysWOW64
2016-02-15 12:34:46 ----AD---- C:\Windows
2016-02-15 12:30:32 ----D---- C:\Windows\System32
2016-02-15 12:27:52 ----D---- C:\Windows\inf
2016-02-15 12:27:47 ----D---- C:\Windows\Minidump
2016-02-15 12:27:47 ----D---- C:\Windows\debug
2016-02-15 12:17:01 ----D---- C:\Users\VS\AppData\Roaming\602Installer
2016-02-15 12:13:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-14 20:44:41 ----A---- C:\Windows\wininit.ini
2016-02-14 20:44:40 ----RD---- C:\Program Files (x86)
2016-02-14 18:03:17 ----D---- C:\Windows\system32\Tasks
2016-02-14 18:02:28 ----D---- C:\Windows\system32\drivers
2016-02-14 17:11:34 ----D---- C:\Windows\winsxs
2016-02-14 17:11:14 ----D---- C:\ProgramData\AVAST Software
2016-02-14 17:09:51 ----D---- C:\Program Files\AVAST Software
2016-02-10 19:53:54 ----D---- C:\Windows\Microsoft.NET
2016-02-10 10:03:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-02-10 09:50:39 ----RSD---- C:\Windows\assembly
2016-02-10 09:38:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-10 09:22:44 ----D---- C:\Program Files\Windows Journal
2016-02-10 09:22:43 ----SD---- C:\Windows\system32\CompatTel
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\en-US
2016-02-10 09:22:42 ----D---- C:\Windows\system32\cs-CZ
2016-02-10 09:22:42 ----D---- C:\Windows\system32\appraiser
2016-02-10 09:22:42 ----D---- C:\Windows\AppPatch
2016-02-10 09:22:42 ----D---- C:\Program Files\Internet Explorer
2016-02-10 09:22:42 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-10 09:22:22 ----D---- C:\Windows\cs-CZ
2016-02-09 21:45:02 ----D---- C:\Windows\system32\MRT
2016-02-09 21:40:56 ----A---- C:\Windows\system32\MRT.exe
2016-02-09 21:32:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-02-09 20:01:32 ----D---- C:\Windows\system32\catroot2
2016-01-28 19:37:58 ----D---- C:\Windows\system32\NDF
2016-01-28 19:26:27 ----D---- C:\Windows\Registration
2016-01-28 10:50:04 ----D---- C:\Users\VS\AppData\Roaming\FileZilla
2016-01-26 12:16:09 ----D---- C:\Windows\rescache
2016-01-21 21:37:23 ----D---- C:\ProgramData\boost_interprocess
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-02-14 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-02-14 287016]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-03-04 540696]
R0 johci;JMicron 1394 Filter Driver; C:\Windows\system32\DRIVERS\johci.sys [2010-01-15 23152]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2016-02-14 154024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-02-14 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-02-14 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-02-14 1065720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-02-14 463744]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-02-14 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-02-14 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-02-14 165344]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2016-02-14 310904]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-03-29 6405632]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-03-29 188928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-04-07 2216960]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-03-08 123408]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-03-30 32296]
R3 enecir;ENE CIR Receiver; C:\Windows\system32\DRIVERS\enecir.sys [2009-12-25 76112]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2013-11-30 91648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-07 2338592]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
R3 Ltn_stk7770P;PCTV LITEON TT128xDA based TV tuner device; C:\Windows\system32\DRIVERS\Ltn_stk7770P.sys [2010-04-13 917504]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-05 18432]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2014-10-08 766632]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2014-10-08 273576]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2014-10-08 29352]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2014-10-08 23208]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-04-15 319536]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-05 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys); C:\Windows\System32\Drivers\FPSensor.sys [2012-12-17 35888]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-03-30 39464]
S3 ATHDFU;Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2010-03-30 55336]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-03-30 294952]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-03-30 202792]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-03-30 53800]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-03-30 154792]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-03-30 264232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 14976]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2010-10-08 32768]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2013-11-30 226176]
S3 hwusb_cdcacm;hwusb_cdcacm; C:\Windows\system32\DRIVERS\ew_cdcacm.sys [2014-07-25 125952]
S3 hwusb_wwanecm;hwusb_wwanecm; C:\Windows\system32\DRIVERS\ew_wwanecm.sys [2014-09-30 380672]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2010-03-26 160880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdcx64;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys []
S3 nmwcdx64;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-03-29 202752]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-04-01 34392]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-02-14 237096]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-04-08 312400]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-04-23 867360]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HWDeviceService64.exe;HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [2014-01-15 351824]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2014-10-08 534184]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2016-02-14 5570120]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2014-10-08 211104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 O2 Internet. RunOuc;O2 Internet. OUC; C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe [2013-10-26 651856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-02-14 146888]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-18 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
viktor1771
- Návštěvník
- Příspěvky: 52
- Registrován: 30 čer 2014 21:02
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
NTB naběhl s bílou obrazovkou, musel jsem jej restartovat dvakrát, ale jinak subjektivně se zdá, že nyni programy a jejich spouštění běží rychleji. Dík.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
S bílou obrazovkou je stále problém?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
viktor1771
- Návštěvník
- Příspěvky: 52
- Registrován: 30 čer 2014 21:02
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
Zatím jsem zapnul a vypnul počítač jen třikrát a pokaždé naběhl v pořádku...
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Bílá obrazovka po spuštění, pomalý start i náběh Windows
Tak to jsem rád! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?