Prosím o kontrolu logu, pomalý počítač

[Buchtanen]

prosím o kontrolu přiloženého logu.

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[Buchtanen]

Dobrý den,
dokončeno...

# AdwCleaner v5.102 - Logfile created 15/03/2016 at 18:28:41
# Updated 13/03/2016 by Xplode
# Database : 2016-03-14.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Buchtanen - MOBSTEJSN
# Running from : C:\Users\Buchtanen\Downloads\adwcleaner_5.102.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\Applications\iLividSetup-r362-n-bc.exe
[-] Key Deleted : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd

***** [ Web browsers ] *****

[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : user_pref("extensions.7FCbHwBYG9LLLIFP.scode", "(function(){try{if(window.self.location.href.indexOf(\"pdCGpdg8qTrGqdk8rHC8rjCGrn\")>-1){return;}}catch(e){}try{var d=[[\"acebook\",\"e4everything.co\",[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : ww.mail.com\",\"suche.mail.com\",\"www.web.de\",\"suche.web.de\",\"suche.gmx.de\",\"search.gmx.com\",\"search.gmx.co.uk\",\"news.gmx.com\",\"news.gmx.co.uk\",\"www.turbosearchengine.com\",\"search.tur[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : =ct3330145\",\"?ctid=ct3330146\",\"?ctid=ct3330147\",\"?ctid=ct3330148\",\"?ctid=ct3330149\",\"form=u064ht&pc=u064\",\"source=45905810\",\"source=532d277e\",\"aro.com/ws/?source=6974b128\",\"esmoke.co[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : e.removeChild(document.getElementById('w3uyh7g6h7f5x'))}}catch(e){};try{(function(){try{var b=\"gonetwork.eu performancerevenues.com adtransfer adk2.com timehare clkads.com adcash xtendmedia.com cpxin[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : user_pref("extensions.zw5YPbCNUHX4QFdb.scode", "(function(){try{if(window.self.location.href.indexOf(\"pdCGpdg8qTrGqdk8rHC8rjCGrn\")>-1){return;}}catch(e){}try{var d=[[\"acebook\",\"e4everything.co\",[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : ww.mail.com\",\"suche.mail.com\",\"www.web.de\",\"suche.web.de\",\"suche.gmx.de\",\"search.gmx.com\",\"search.gmx.co.uk\",\"news.gmx.com\",\"news.gmx.co.uk\",\"www.turbosearchengine.com\",\"search.tur[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : =ct3330145\",\"?ctid=ct3330146\",\"?ctid=ct3330147\",\"?ctid=ct3330148\",\"?ctid=ct3330149\",\"form=u064ht&pc=u064\",\"source=45905810\",\"source=532d277e\",\"aro.com/ws/?source=6974b128\",\"esmoke.co[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : uplicateElement(e),k=e.parentNode,k.insertBefore(h,e),k.removeChild(e));e=n.utils.query_selector_all(\".download.step\")[0];\"undefined\"!==typeof e&&(h=n.utils.duplicateElement(e),k=e.parentNode,k.in[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : tils.ping(\"validate2\");return!0}},wow:{hrefSelector:\".find\",unique_search_divs:\"1\",dr:[\"\",\"\"],urls:[\"hxxp://www.wow.com/search?*\"],src_for_keyword:\"#csbquery1\",validate:function(){b.util[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : rd:\"input[type='text']#qkw0\",validate:function(){return!0}}, webcrawler:{unique_search_divs:\"1\",urls:[\"hxxp://www.webcrawler.com/search/web?*\"],src_for_keyword:\"input[type='text']#topSearchText[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : he[d])}};a.addClickEvent=function(){for(var b=0;b<a.hrefElements.length;b++)a.events.add(\"click\",function(b){a.clickEvent(b)},!1,a.hrefElements)};a.clickEvent=function(b){a.elem=b.targetb.srcEl[...]
[-] [C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\prefs.js] [Preference] Deleted : dChild(a)}};}catch(e){};try{if(window.self==window.top){var script=document.createElement(\"script\");script.type=\"text/javascript\";script.src=\"//cdncache-a.akamaihd.net/loaders/1748/l.js?aoi=13117[...]
[-] [C:\Users\Buchtanen\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : deluxe-ski-jump-2.en.softonic.com
[-] [C:\Users\Buchtanen\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : startsear.ch
[-] [C:\Users\Buchtanen\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : funmoods
[-] [C:\Users\Buchtanen\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : flac-to-mp3-converter.en.softonic.com
[-] [C:\Users\Buchtanen\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

*************************

C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [5428 bytes] - [15/03/2016 18:28:41]
C:\Program Files (x86)\AdwCleaner\AdwCleaner[S1].txt - [5419 bytes] - [15/03/2016 18:19:01]

########## EOF - C:\Program Files (x86)\AdwCleaner\AdwCleaner[C1].txt - [5614 bytes] ##########

[Rudy]

Dejte nový log RSIT.

[Buchtanen]

nový log RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Buchtanen at 2016-03-15 18:47:03
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 307 GB (67%) free of 461 GB
Total RAM: 8174 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:47:08, on 15.3.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18231)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Buchtanen\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Buchtanen.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: (no name) - {95188727-288F-4581-A48D-EAB3BD027314} - (no file)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Buchtanen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [BingSvc] C:\Users\Buchtanen\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O9 - Extra 'Tools' menuitem: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{359E4F5A-1A40-464B-BD4A-2AF301A56293}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CCS\Services\Tcpip\..\{ACBD22E6-654D-4F0C-A748-E286FD72D030}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = fw.quinta.cz
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = fw.quinta.cz
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = fw.quinta.cz
O20 - AppInit_DLLs: c:\windows\syswow64\guard32.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Programs Manager Service (CPMService) - Unknown owner - C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe
O23 - Service: COMODO System Utilities Service (CSUService) - Comodo Security Solutions, Inc. - C:\Program Files\COMODO\COMODO System Utilities\CSUService.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MySQL57 - Unknown owner - C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect VPN Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12216 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
atieclxx
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe" --defaults-file="C:\ProgramData\MySQL\MySQL Server 5.7\my.ini" MySQL57
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe"
C:\Windows\System32\tcpsvcs.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\TurboBoost\TurboBoost.exe"
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Users\Buchtanen\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Buchtanen\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=49.0.2623.87 --handshake-handle=0x298
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
explorer.exe
"C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe"
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss

"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe42_ Global\UsGthrCtrlFltPipeMssGthrPipe42 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Windows\system32\SearchFilterHost.exe" 0 880 884 892 65536 888
"C:\Users\Buchtanen\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-962970777-533860840-2712588126-1000Core.job - C:\Users\Buchtanen\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-962970777-533860840-2712588126-1000UA.job - C:\Users\Buchtanen\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default

prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=SL5MDF&PC=SL5M&q="
prefs.js - "browser.startup.homepage" - "http://www.msn.com/?pc=SL5M&ocid=SL5MDHP&osmkt=en-ww"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.182 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1220162.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.182 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll


C:\Program Files (x86)\Mozilla Firefox\components\
nsIBitCometAgent.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
npBitCometAgent.dll
nppdf32.DEU
nppdf32.dll
nppdf32.FRA
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class

C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\searchplugins\
bing-.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2010-11-26 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{95188727-288F-4581-A48D-EAB3BD027314}
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2010-11-26 379040]
"IAStorIcon"=c:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe [2010-09-14 283160]
"RTHDVCPL"=c:\program files\realtek\audio\hda\ravcpl64.exe [2013-11-29 13662936]
"NUSB3MON"=c:\program files (x86)\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe [2010-04-27 113288]
"LManager"=c:\program files (x86)\launch manager\lmanager.exe [2010-12-09 1025616]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-08-01 2280232]
"SunJavaUpdateSched"=c:\program files (x86)\common files\java\java update\jusched.exe [2016-01-29 594992]
"AtherosBtStack"=c:\program files (x86)\bluetooth suite\btvstack.exe [2010-11-26 613536]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-19 1427648]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Buchtanen\AppData\Local\Google\Update\GoogleUpdate.exe [2016-01-13 144200]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-03-13 23260000]
"AdobeBridge"= []
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-03-02 7943072]
"BingSvc"=C:\Users\Buchtanen\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2016-03-10 144008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe_ID0ENQBO]
C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-17 50378880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-05-24 336384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2015-12-14 3013712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files (x86)\Winamp\winampa.exe [2012-06-28 74752]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2016-02-01 36760]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2016-02-01 2904984]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-01-29 594992]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\91838446.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\91838446.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"vidc.lags"=lagarith.dll
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open -

======List of files/folders created in the last 1 month======

2016-03-15 13:10:30 ----D---- C:\Program Files (x86)\AdwCleaner
2016-03-09 14:05:12 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-03-09 14:05:12 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wuwebv.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wudriver.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wucltux.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wuaueng.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wuapi.dll
2016-03-09 14:05:11 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-03-09 14:05:11 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-03-09 14:05:11 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wups2.dll
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wups.dll
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wuauclt.exe
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wuapp.exe
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-03-09 14:05:11 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-03-09 14:04:53 ----A---- C:\Windows\system32\seclogon.dll
2016-03-09 14:04:50 ----A---- C:\Windows\system32\win32k.sys
2016-03-09 14:04:46 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-09 14:04:43 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-03-09 14:04:43 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-09 14:04:43 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-09 14:04:42 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2016-03-09 14:04:07 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-03-09 14:04:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-03-09 14:04:07 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-03-09 14:04:07 ----A---- C:\Windows\system32\iertutil.dll
2016-03-09 14:04:07 ----A---- C:\Windows\system32\iernonce.dll
2016-03-09 14:04:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-03-09 14:04:06 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-03-09 14:04:06 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-03-09 14:04:06 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-03-09 14:04:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-03-09 14:04:05 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-03-09 14:04:05 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-03-09 14:04:05 ----A---- C:\Windows\system32\inseng.dll
2016-03-09 14:04:05 ----A---- C:\Windows\system32\ie4uinit.exe
2016-03-09 14:04:04 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-03-09 14:04:04 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-03-09 14:04:03 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-03-09 14:04:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-03-09 14:04:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-03-09 14:04:03 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-09 14:04:01 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-03-09 14:04:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-03-09 14:04:00 ----A---- C:\Windows\system32\urlmon.dll
2016-03-09 14:04:00 ----A---- C:\Windows\system32\occache.dll
2016-03-09 14:04:00 ----A---- C:\Windows\system32\iedkcs32.dll
2016-03-09 14:03:59 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-03-09 14:03:59 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-03-09 14:03:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-03-09 14:03:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-03-09 14:03:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-03-09 14:03:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-09 14:03:57 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-03-09 14:03:57 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-03-09 14:03:57 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-09 14:03:57 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-09 14:03:56 ----A---- C:\Windows\system32\iesetup.dll
2016-03-09 14:03:56 ----A---- C:\Windows\system32\ieapfltr.dll
2016-03-09 14:03:54 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-03-09 14:03:54 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-03-09 14:03:54 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-03-09 14:03:54 ----A---- C:\Windows\system32\vbscript.dll
2016-03-09 14:03:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-03-09 14:03:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-03-09 14:03:53 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-09 14:03:52 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-03-09 14:03:52 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-03-09 14:03:51 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-09 14:03:50 ----A---- C:\Windows\system32\ieui.dll
2016-03-09 14:03:50 ----A---- C:\Windows\system32\ieframe.dll
2016-03-09 14:03:49 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-03-09 14:03:49 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-09 14:03:49 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-09 14:03:48 ----A---- C:\Windows\system32\webcheck.dll
2016-03-09 14:03:48 ----A---- C:\Windows\system32\jscript.dll
2016-03-09 14:03:47 ----A---- C:\Windows\system32\wininet.dll
2016-03-09 14:03:47 ----A---- C:\Windows\system32\jscript9diag.dll
2016-03-09 14:03:47 ----A---- C:\Windows\system32\jscript9.dll
2016-03-09 14:03:45 ----A---- C:\Windows\system32\msrating.dll
2016-03-09 14:03:45 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-03-09 14:03:44 ----A---- C:\Windows\system32\mshtml.dll
2016-03-09 14:01:19 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-09 14:01:19 ----A---- C:\Windows\system32\ntdll.dll
2016-03-09 14:01:18 ----A---- C:\Windows\system32\KernelBase.dll
2016-03-09 14:01:17 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-03-09 14:01:17 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-03-09 14:01:17 ----A---- C:\Windows\system32\kerberos.dll
2016-03-09 14:01:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-03-09 14:01:14 ----A---- C:\Windows\system32\kernel32.dll
2016-03-09 14:01:12 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-03-09 14:01:12 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-03-09 14:01:12 ----A---- C:\Windows\system32\advapi32.dll
2016-03-09 14:01:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-03-09 14:01:10 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-03-09 14:01:10 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-03-09 14:01:09 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-09 14:01:09 ----A---- C:\Windows\system32\lsasrv.dll
2016-03-09 14:01:08 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-03-09 14:01:08 ----A---- C:\Windows\system32\smss.exe
2016-03-09 14:01:08 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-03-09 14:01:07 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-03-09 14:01:07 ----A---- C:\Windows\system32\wow64win.dll
2016-03-09 14:01:07 ----A---- C:\Windows\system32\schannel.dll
2016-03-09 14:01:07 ----A---- C:\Windows\system32\msv1_0.dll
2016-03-09 14:01:07 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-03-09 14:01:06 ----A---- C:\Windows\system32\winsrv.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\wdigest.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\TSpkg.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\sspicli.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\srcore.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\ncrypt.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\conhost.exe
2016-03-09 14:01:05 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-03-09 14:01:05 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-03-09 14:01:05 ----A---- C:\Windows\system32\wow64.dll
2016-03-09 14:01:04 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-03-09 14:01:04 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-09 14:01:03 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-03-09 14:01:03 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-03-09 14:01:03 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-03-09 14:01:03 ----A---- C:\Windows\system32\wow64cpu.dll
2016-03-09 14:01:03 ----A---- C:\Windows\system32\sspisrv.dll
2016-03-09 14:01:03 ----A---- C:\Windows\system32\lsass.exe
2016-03-09 14:01:03 ----A---- C:\Windows\system32\cryptbase.dll
2016-03-09 14:01:02 ----A---- C:\Windows\system32\srclient.dll
2016-03-09 14:01:02 ----A---- C:\Windows\system32\secur32.dll
2016-03-09 14:01:02 ----A---- C:\Windows\system32\rstrui.exe
2016-03-09 14:01:02 ----A---- C:\Windows\system32\credssp.dll
2016-03-09 14:01:01 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-03-09 14:01:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-03-09 14:01:01 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-03-09 14:01:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-03-09 14:01:01 ----A---- C:\Windows\system32\ntvdm64.dll
2016-03-09 14:01:00 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-03-09 14:01:00 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-03-09 14:01:00 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-03-09 14:01:00 ----A---- C:\Windows\system32\auditpol.exe
2016-03-09 14:00:59 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-09 14:00:52 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-03-09 14:00:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-09 14:00:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-09 14:00:51 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-09 14:00:51 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-09 14:00:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-03-09 14:00:51 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-03-09 14:00:51 ----A---- C:\Windows\system32\apisetschema.dll
2016-03-09 14:00:50 ----A---- C:\Windows\SYSWOW64\user.exe
2016-03-09 14:00:49 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-03-09 14:00:49 ----A---- C:\Windows\system32\msaudite.dll
2016-03-09 14:00:49 ----A---- C:\Windows\system32\adtschema.dll
2016-03-09 14:00:48 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-03-09 14:00:48 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-03-09 14:00:48 ----A---- C:\Windows\system32\msobjs.dll
2016-03-09 13:59:25 ----A---- C:\Windows\system32\mfds.dll
2016-03-09 13:59:24 ----A---- C:\Windows\SYSWOW64\mfds.dll
2016-03-09 13:59:23 ----A---- C:\Windows\system32\atmfd.dll
2016-03-09 13:59:22 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2016-03-09 13:59:22 ----A---- C:\Windows\system32\lpk.dll
2016-03-09 13:59:22 ----A---- C:\Windows\system32\fontsub.dll
2016-03-09 13:59:22 ----A---- C:\Windows\system32\dciman32.dll
2016-03-09 13:59:21 ----A---- C:\Windows\SYSWOW64\lpk.dll
2016-03-09 13:59:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2016-03-09 13:59:21 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2016-03-09 13:59:21 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2016-03-09 13:59:21 ----A---- C:\Windows\system32\atmlib.dll
2016-03-09 13:59:19 ----A---- C:\Windows\system32\wmp.dll
2016-03-09 13:59:17 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-03-09 13:59:17 ----A---- C:\Windows\system32\spwmp.dll
2016-03-09 13:59:16 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2016-03-09 13:59:16 ----A---- C:\Windows\system32\dxmasf.dll
2016-03-09 13:59:15 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2016-03-09 13:59:14 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-03-09 13:59:14 ----A---- C:\Windows\system32\wmploc.DLL
2016-03-09 13:58:57 ----A---- C:\Windows\system32\invagent.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\generaltel.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\devinv.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-03-09 13:58:57 ----A---- C:\Windows\system32\appraiser.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\aeinv.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\acmigration.dll
2016-03-08 12:54:50 ----D---- C:\Program Files (x86)\Atlassian
2016-03-02 12:29:15 ----D---- C:\Program Files\MiniTool Partition Wizard Free 9.1
2016-02-25 16:39:19 ----HD---- C:\$WINDOWS.~BT
2016-02-25 14:39:33 ----A---- C:\Windows\system32\wdi.dll
2016-02-25 14:39:33 ----A---- C:\Windows\system32\powertracker.dll
2016-02-25 14:39:33 ----A---- C:\Windows\system32\perftrack.dll
2016-02-25 14:39:32 ----A---- C:\Windows\SYSWOW64\wdi.dll
2016-02-25 11:32:57 ----D---- C:\ESD
2016-02-24 22:15:04 ----D---- C:\Windows\CheckSur
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\ucrtbase.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-02-21 21:33:04 ----A---- C:\Windows\system32\drivers\ntfs.sys
2016-02-18 09:01:41 ----D---- C:\Program Files (x86)\CIGLER SOFTWARE
2016-02-18 09:01:31 ----D---- C:\ProgramData\CIGLER SOFTWARE

======List of files/folders modified in the last 1 month======

2016-03-15 18:47:05 ----D---- C:\Program Files\trend micro
2016-03-15 18:46:53 ----D---- C:\Windows\Prefetch
2016-03-15 15:17:22 ----HD---- C:\VTRoot
2016-03-15 13:26:11 ----A---- C:\Windows\SYSWOW64\log.txt
2016-03-15 13:24:11 ----D---- C:\ProgramData\boost_interprocess
2016-03-15 13:23:54 ----D---- C:\Windows\Temp
2016-03-15 13:23:52 ----D---- C:\Windows\system32\config
2016-03-15 13:10:49 ----A---- C:\Users\Buchtanen\AppData\Roaming\Network Meter_Usage.ini
2016-03-15 13:10:30 ----D---- C:\Program Files (x86)
2016-03-15 12:26:47 ----D---- C:\rsit
2016-03-13 22:52:39 ----SHD---- C:\Config.Msi
2016-03-13 22:46:05 ----SHD---- C:\Windows\Installer
2016-03-13 11:51:25 ----D---- C:\Windows\System32
2016-03-13 11:51:25 ----D---- C:\Windows\inf
2016-03-13 11:51:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-11 14:07:04 ----D---- C:\ProgramData\Cisco
2016-03-11 13:25:58 ----D---- C:\Program Files\NetBeans 8.1
2016-03-11 13:17:17 ----D---- C:\Windows\SysWOW64
2016-03-11 13:16:57 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-03-10 16:50:04 ----D---- C:\Windows\rescache
2016-03-10 16:24:48 ----D---- C:\Windows\Microsoft.NET
2016-03-10 16:17:46 ----RSD---- C:\Windows\assembly
2016-03-10 13:20:36 ----D---- C:\Windows\winsxs
2016-03-10 13:17:33 ----D---- C:\Program Files\SUPERAntiSpyware
2016-03-10 13:10:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-03-10 13:10:36 ----D---- C:\Windows\system32\cs-CZ
2016-03-10 13:10:33 ----D---- C:\Program Files\Internet Explorer
2016-03-10 13:10:31 ----D---- C:\Windows\SYSWOW64\en-US
2016-03-10 13:10:08 ----D---- C:\Windows\system32\en-US
2016-03-10 13:10:05 ----D---- C:\Program Files (x86)\Internet Explorer
2016-03-10 13:09:24 ----D---- C:\Windows\AppPatch
2016-03-10 13:09:21 ----D---- C:\Windows\system32\drivers
2016-03-10 13:09:01 ----D---- C:\Program Files (x86)\Windows Media Player
2016-03-10 13:07:47 ----D---- C:\Program Files\Windows Media Player
2016-03-10 13:07:44 ----D---- C:\Windows\system32\DriverStore
2016-03-10 12:43:20 ----D---- C:\Windows\system32\appraiser
2016-03-10 12:41:38 ----SHD---- C:\System Volume Information
2016-03-09 14:17:44 ----D---- C:\Program Files (x86)\Opera Next
2016-03-09 13:57:55 ----D---- C:\Windows\system32\catroot2
2016-03-08 17:53:40 ----D---- C:\Users\Buchtanen\AppData\Roaming\npm
2016-03-08 16:14:05 ----D---- C:\Users\Buchtanen\AppData\Roaming\npm-cache
2016-03-08 14:14:31 ----D---- C:\Windows\system32\Tasks
2016-03-08 12:44:41 ----D---- C:\ProgramData\Atlassian
2016-03-06 00:30:18 ----D---- C:\Users\Buchtanen\AppData\Roaming\Skype
2016-03-02 12:29:22 ----A---- C:\Windows\system32\pwNative.exe
2016-03-02 12:29:15 ----RD---- C:\Program Files
2016-03-01 12:03:48 ----D---- C:\Windows\system32\NDF
2016-03-01 11:24:56 ----D---- C:\Users\Buchtanen\AppData\Roaming\BitComet
2016-02-29 13:43:20 ----SD---- C:\Windows\SYSWOW64\GWX
2016-02-29 13:43:18 ----SD---- C:\Windows\system32\GWX
2016-02-25 17:26:16 ----D---- C:\Windows\Panther
2016-02-25 15:45:08 ----D---- C:\Windows\tracing
2016-02-25 13:33:53 ----D---- C:\Windows
2016-02-21 21:37:45 ----D---- C:\ProgramData\Oracle
2016-02-21 21:34:14 ----D---- C:\Program Files\Java
2016-02-21 21:30:36 ----D---- C:\Program Files (x86)\Java
2016-02-21 21:26:03 ----D---- C:\Program Files (x86)\Common Files
2016-02-21 21:24:37 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-18 09:01:31 ----HD---- C:\ProgramData

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 cumon;cumon; C:\Windows\system32\drivers\cumon.sys [2011-09-05 205512]
R0 Evdd;evdd; C:\Windows\system32\drivers\evdd.sys [2011-09-05 19568]
R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys [2014-10-22 155912]
R0 hotcore3;hc3ServiceName; C:\Windows\system32\DRIVERS\hotcore3.sys [2011-04-12 37456]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-09-14 437272]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys [2014-10-15 452040]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2015-11-18 21184]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2015-11-18 806032]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2015-08-05 45856]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2015-08-05 105096]
R1 nm3;Microsoft Network Monitor 3 Driver; C:\Windows\system32\DRIVERS\nm3.sys [2010-06-09 46392]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 Uim_IM;Universal Image Mounter Plugin; C:\Windows\System32\Drivers\Uim_IMx64.sys [2011-04-12 570320]
R1 UimBus;Universal Image Mounter Controller; C:\Windows\system32\DRIVERS\uimx64.sys [2011-04-12 57424]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2015-12-10 146944]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-10-08 19192]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-25 9359872]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-25 309760]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-11-26 36000]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-05-11 2229608]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-12-25 114704]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-11-26 298144]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-11-26 28832]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-11-26 201376]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-11-26 55456]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-11-26 154272]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-11-26 275616]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-29 3707864]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-09-27 76912]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-01-13 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-12-18 64624]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-09-30 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-09-30 180736]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-12-18 32496]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-08-01 1383472]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2012-08-07 35112]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-08-01 867064]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2015-01-16 38080]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2015-01-16 110336]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 massfilter_hs;HS HandSet Mass Storage Filter Driver; C:\Windows\system32\DRIVERS\massfilter_hs.sys [2011-08-15 18456]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-01-13 63704]
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\Windows\system32\DRIVERS\mcdbus.sys [2009-02-24 255552]
S3 moufiltr;Tablet Mouse Filter Driver; C:\Windows\system32\DRIVERS\moufiltr.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pneteth;PdaNet Broadband; C:\Windows\system32\DRIVERS\pneteth.sys [2011-11-24 15360]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-27 19456]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-07-20 247400]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2015-01-16 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2015-01-16 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2015-01-16 188232]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2015-01-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2015-09-08 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Serial Emulation Driver; C:\Windows\system32\DRIVERS\usbser.sys [2015-02-26 33280]
S3 vhidmini;Generic Virtual HID Driver; C:\Windows\system32\DRIVERS\walvhid.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2016-02-02 172344]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8; c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-25 204288]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-11-26 52896]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2015-09-11 5542472]
R2 CPMService;COMODO Programs Manager Service; C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe [2011-09-05 116032]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-12-09 311376]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-14 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-22 325656]
R2 MySQL57;MySQL57; C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe [2016-01-20 39209984]
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-02-01 135848]
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-02-01 135848]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-10-08 150016]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-22 2656280]
R3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2015-08-19 2265792]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-02-01 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-02-01 125112]
S2 CSUService;COMODO System Utilities Service; C:\Program Files\COMODO\COMODO System Utilities\CSUService.exe [2012-02-24 347968]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-01-13 1135416]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-11 269504]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service; C:\Program Files\BitComet\tools\BitCometService.exe [2016-02-01 1296728]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-08-01 867080]
S3 GREGService;GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-02-09 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2016-01-29 73728]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-09 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-09-30 148080]
S3 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe [2010-11-12 257344]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-02-01 51376]
S4 ePowerSvc;Acer ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2010-10-29 868224]
S4 Live Updater Service;Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2012-04-05 255376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-02-01 135848]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S4 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2015-01-16 743688]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-09-11 838336]
S4 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-17 5702416]
S4 Updater Service;Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2012-04-05 255376]

-----------------EOF-----------------

[Rudy]

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-962970777-533860840-2712588126-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-962970777-533860840-2712588126-1000UA.job
C:\Users\Buchtanen\AppData\Local\Microsoft\BingSvc

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BingSvc"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

[Buchtanen]

provedeno....
další log RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Buchtanen at 2016-03-15 20:28:31
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 309 GB (67%) free of 461 GB
Total RAM: 8174 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:28:39, on 15.3.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18231)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\Buchtanen\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files\trend micro\Buchtanen.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Buchtanen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O9 - Extra 'Tools' menuitem: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{359E4F5A-1A40-464B-BD4A-2AF301A56293}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CCS\Services\Tcpip\..\{ACBD22E6-654D-4F0C-A748-E286FD72D030}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = fw.quinta.cz
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = fw.quinta.cz
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = fw.quinta.cz
O20 - AppInit_DLLs: c:\windows\syswow64\guard32.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Programs Manager Service (CPMService) - Unknown owner - C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe
O23 - Service: COMODO System Utilities Service (CSUService) - Comodo Security Solutions, Inc. - C:\Program Files\COMODO\COMODO System Utilities\CSUService.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MySQL57 - Unknown owner - C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect VPN Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11606 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
"C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe"
taskeng.exe {0F37FB74-B935-46CB-8D37-5FD41131663F}
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe" --defaults-file="C:\ProgramData\MySQL\MySQL Server 5.7\my.ini" MySQL57
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\Windows\System32\tcpsvcs.exe
"C:\Program Files\Intel\TurboBoost\TurboBoost.exe"
C:\Windows\system32\svchost.exe -k iissvcs
"taskhost.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskeng.exe {FE5E32FD-26A4-4A8F-A2C9-992E5149BA2C}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
"C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
C:\Windows\system32\GWX\GWX.exe /updateconfig
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Users\Buchtanen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cmdupd.exe" -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMerger -Embedding
"C:\Windows\system32\SearchFilterHost.exe" 0 884 888 896 65536 892
"C:\Users\Buchtanen\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default

prefs.js - "keyword.URL" - "http://www.bing.com/search?FORM=SL5MDF&PC=SL5M&q="
prefs.js - "browser.startup.homepage" - "http://www.msn.com/?pc=SL5M&ocid=SL5MDHP&osmkt=en-ww"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.182 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1220162.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.182 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll


C:\Program Files (x86)\Mozilla Firefox\components\
nsIBitCometAgent.xpt
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
npBitCometAgent.dll
nppdf32.DEU
nppdf32.dll
nppdf32.FRA
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class

C:\Users\Buchtanen\AppData\Roaming\Mozilla\Firefox\Profiles\2cujllkd.default\searchplugins\
bing-.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-21 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2010-11-26 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-21 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05 339872]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2010-11-26 379040]
"IAStorIcon"=c:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe [2010-09-14 283160]
"RTHDVCPL"=c:\program files\realtek\audio\hda\ravcpl64.exe [2013-11-29 13662936]
"NUSB3MON"=c:\program files (x86)\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe [2010-04-27 113288]
"LManager"=c:\program files (x86)\launch manager\lmanager.exe [2010-12-09 1025616]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-08-01 2280232]
"SunJavaUpdateSched"=c:\program files (x86)\common files\java\java update\jusched.exe [2016-01-29 594992]
"AtherosBtStack"=c:\program files (x86)\bluetooth suite\btvstack.exe [2010-11-26 613536]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-19 1427648]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Buchtanen\AppData\Local\Google\Update\GoogleUpdate.exe [2016-01-13 144200]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-03-13 23260000]
"AdobeBridge"= []
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2016-03-02 7943072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe_ID0ENQBO]
C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-12-17 50378880]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-05-24 336384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2015-12-14 3013712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files (x86)\Winamp\winampa.exe [2012-06-28 74752]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2016-02-01 36760]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2016-02-01 2904984]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\91838446.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\91838446.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"vidc.lags"=lagarith.dll
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open -

======List of files/folders created in the last 1 month======

2016-03-15 20:08:33 ----D---- C:\_OTM
2016-03-15 13:10:30 ----D---- C:\Program Files (x86)\AdwCleaner
2016-03-09 14:05:12 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-03-09 14:05:12 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wuwebv.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wudriver.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wucltux.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wuaueng.dll
2016-03-09 14:05:12 ----A---- C:\Windows\system32\wuapi.dll
2016-03-09 14:05:11 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-03-09 14:05:11 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-03-09 14:05:11 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wups2.dll
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wups.dll
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wuauclt.exe
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wuapp.exe
2016-03-09 14:05:11 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2016-03-09 14:05:11 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-03-09 14:04:53 ----A---- C:\Windows\system32\seclogon.dll
2016-03-09 14:04:50 ----A---- C:\Windows\system32\win32k.sys
2016-03-09 14:04:46 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2016-03-09 14:04:43 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-03-09 14:04:43 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-09 14:04:43 ----A---- C:\Windows\system32\asycfilt.dll
2016-03-09 14:04:42 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2016-03-09 14:04:07 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-03-09 14:04:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-03-09 14:04:07 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-03-09 14:04:07 ----A---- C:\Windows\system32\iertutil.dll
2016-03-09 14:04:07 ----A---- C:\Windows\system32\iernonce.dll
2016-03-09 14:04:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-03-09 14:04:06 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-03-09 14:04:06 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-03-09 14:04:06 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-03-09 14:04:05 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-03-09 14:04:05 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-03-09 14:04:05 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-03-09 14:04:05 ----A---- C:\Windows\system32\inseng.dll
2016-03-09 14:04:05 ----A---- C:\Windows\system32\ie4uinit.exe
2016-03-09 14:04:04 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-03-09 14:04:04 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-03-09 14:04:03 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-03-09 14:04:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-03-09 14:04:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-03-09 14:04:03 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-09 14:04:01 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-03-09 14:04:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-03-09 14:04:00 ----A---- C:\Windows\system32\urlmon.dll
2016-03-09 14:04:00 ----A---- C:\Windows\system32\occache.dll
2016-03-09 14:04:00 ----A---- C:\Windows\system32\iedkcs32.dll
2016-03-09 14:03:59 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-03-09 14:03:59 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-03-09 14:03:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-03-09 14:03:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-03-09 14:03:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-03-09 14:03:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-09 14:03:57 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-03-09 14:03:57 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-03-09 14:03:57 ----A---- C:\Windows\system32\msfeeds.dll
2016-03-09 14:03:57 ----A---- C:\Windows\system32\dxtrans.dll
2016-03-09 14:03:56 ----A---- C:\Windows\system32\iesetup.dll
2016-03-09 14:03:56 ----A---- C:\Windows\system32\ieapfltr.dll
2016-03-09 14:03:54 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-03-09 14:03:54 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-03-09 14:03:54 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-03-09 14:03:54 ----A---- C:\Windows\system32\vbscript.dll
2016-03-09 14:03:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-03-09 14:03:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-03-09 14:03:53 ----A---- C:\Windows\system32\jsproxy.dll
2016-03-09 14:03:52 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-03-09 14:03:52 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-03-09 14:03:51 ----A---- C:\Windows\system32\dxtmsft.dll
2016-03-09 14:03:50 ----A---- C:\Windows\system32\ieui.dll
2016-03-09 14:03:50 ----A---- C:\Windows\system32\ieframe.dll
2016-03-09 14:03:49 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-03-09 14:03:49 ----A---- C:\Windows\system32\mshtmled.dll
2016-03-09 14:03:49 ----A---- C:\Windows\system32\ieUnatt.exe
2016-03-09 14:03:48 ----A---- C:\Windows\system32\webcheck.dll
2016-03-09 14:03:48 ----A---- C:\Windows\system32\jscript.dll
2016-03-09 14:03:47 ----A---- C:\Windows\system32\wininet.dll
2016-03-09 14:03:47 ----A---- C:\Windows\system32\jscript9diag.dll
2016-03-09 14:03:47 ----A---- C:\Windows\system32\jscript9.dll
2016-03-09 14:03:45 ----A---- C:\Windows\system32\msrating.dll
2016-03-09 14:03:45 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-03-09 14:03:44 ----A---- C:\Windows\system32\mshtml.dll
2016-03-09 14:01:19 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-09 14:01:19 ----A---- C:\Windows\system32\ntdll.dll
2016-03-09 14:01:18 ----A---- C:\Windows\system32\KernelBase.dll
2016-03-09 14:01:17 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-03-09 14:01:17 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-03-09 14:01:17 ----A---- C:\Windows\system32\kerberos.dll
2016-03-09 14:01:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-03-09 14:01:14 ----A---- C:\Windows\system32\kernel32.dll
2016-03-09 14:01:12 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-03-09 14:01:12 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-03-09 14:01:12 ----A---- C:\Windows\system32\advapi32.dll
2016-03-09 14:01:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-03-09 14:01:10 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-03-09 14:01:10 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-03-09 14:01:09 ----A---- C:\Windows\system32\rpcrt4.dll
2016-03-09 14:01:09 ----A---- C:\Windows\system32\lsasrv.dll
2016-03-09 14:01:08 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-03-09 14:01:08 ----A---- C:\Windows\system32\smss.exe
2016-03-09 14:01:08 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-03-09 14:01:07 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-03-09 14:01:07 ----A---- C:\Windows\system32\wow64win.dll
2016-03-09 14:01:07 ----A---- C:\Windows\system32\schannel.dll
2016-03-09 14:01:07 ----A---- C:\Windows\system32\msv1_0.dll
2016-03-09 14:01:07 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-03-09 14:01:06 ----A---- C:\Windows\system32\winsrv.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\wdigest.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\TSpkg.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\sspicli.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\srcore.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\ncrypt.dll
2016-03-09 14:01:06 ----A---- C:\Windows\system32\conhost.exe
2016-03-09 14:01:05 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-03-09 14:01:05 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-03-09 14:01:05 ----A---- C:\Windows\system32\wow64.dll
2016-03-09 14:01:04 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-03-09 14:01:04 ----A---- C:\Windows\system32\csrsrv.dll
2016-03-09 14:01:03 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-03-09 14:01:03 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-03-09 14:01:03 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-03-09 14:01:03 ----A---- C:\Windows\system32\wow64cpu.dll
2016-03-09 14:01:03 ----A---- C:\Windows\system32\sspisrv.dll
2016-03-09 14:01:03 ----A---- C:\Windows\system32\lsass.exe
2016-03-09 14:01:03 ----A---- C:\Windows\system32\cryptbase.dll
2016-03-09 14:01:02 ----A---- C:\Windows\system32\srclient.dll
2016-03-09 14:01:02 ----A---- C:\Windows\system32\secur32.dll
2016-03-09 14:01:02 ----A---- C:\Windows\system32\rstrui.exe
2016-03-09 14:01:02 ----A---- C:\Windows\system32\credssp.dll
2016-03-09 14:01:01 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-03-09 14:01:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-03-09 14:01:01 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-03-09 14:01:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-03-09 14:01:01 ----A---- C:\Windows\system32\ntvdm64.dll
2016-03-09 14:01:00 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-03-09 14:01:00 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-03-09 14:01:00 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-03-09 14:01:00 ----A---- C:\Windows\system32\auditpol.exe
2016-03-09 14:00:59 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-09 14:00:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-09 14:00:54 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-09 14:00:53 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-09 14:00:52 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-09 14:00:52 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-03-09 14:00:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-09 14:00:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-09 14:00:51 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-09 14:00:51 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-09 14:00:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-03-09 14:00:51 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-03-09 14:00:51 ----A---- C:\Windows\system32\apisetschema.dll
2016-03-09 14:00:50 ----A---- C:\Windows\SYSWOW64\user.exe
2016-03-09 14:00:49 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-03-09 14:00:49 ----A---- C:\Windows\system32\msaudite.dll
2016-03-09 14:00:49 ----A---- C:\Windows\system32\adtschema.dll
2016-03-09 14:00:48 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-03-09 14:00:48 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-03-09 14:00:48 ----A---- C:\Windows\system32\msobjs.dll
2016-03-09 13:59:25 ----A---- C:\Windows\system32\mfds.dll
2016-03-09 13:59:24 ----A---- C:\Windows\SYSWOW64\mfds.dll
2016-03-09 13:59:23 ----A---- C:\Windows\system32\atmfd.dll
2016-03-09 13:59:22 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2016-03-09 13:59:22 ----A---- C:\Windows\system32\lpk.dll
2016-03-09 13:59:22 ----A---- C:\Windows\system32\fontsub.dll
2016-03-09 13:59:22 ----A---- C:\Windows\system32\dciman32.dll
2016-03-09 13:59:21 ----A---- C:\Windows\SYSWOW64\lpk.dll
2016-03-09 13:59:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2016-03-09 13:59:21 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2016-03-09 13:59:21 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2016-03-09 13:59:21 ----A---- C:\Windows\system32\atmlib.dll
2016-03-09 13:59:19 ----A---- C:\Windows\system32\wmp.dll
2016-03-09 13:59:17 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-03-09 13:59:17 ----A---- C:\Windows\system32\spwmp.dll
2016-03-09 13:59:16 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2016-03-09 13:59:16 ----A---- C:\Windows\system32\dxmasf.dll
2016-03-09 13:59:15 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2016-03-09 13:59:14 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2016-03-09 13:59:14 ----A---- C:\Windows\system32\wmploc.DLL
2016-03-09 13:58:57 ----A---- C:\Windows\system32\invagent.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\generaltel.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\devinv.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-03-09 13:58:57 ----A---- C:\Windows\system32\appraiser.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\aeinv.dll
2016-03-09 13:58:57 ----A---- C:\Windows\system32\acmigration.dll
2016-03-08 12:54:50 ----D---- C:\Program Files (x86)\Atlassian
2016-03-02 12:29:15 ----D---- C:\Program Files\MiniTool Partition Wizard Free 9.1
2016-02-25 16:39:19 ----HD---- C:\$WINDOWS.~BT
2016-02-25 14:39:33 ----A---- C:\Windows\system32\wdi.dll
2016-02-25 14:39:33 ----A---- C:\Windows\system32\powertracker.dll
2016-02-25 14:39:33 ----A---- C:\Windows\system32\perftrack.dll
2016-02-25 14:39:32 ----A---- C:\Windows\SYSWOW64\wdi.dll
2016-02-25 11:32:57 ----D---- C:\ESD
2016-02-24 22:15:04 ----D---- C:\Windows\CheckSur
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\ucrtbase.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-02-21 21:33:45 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-02-21 21:33:44 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-02-21 21:33:04 ----A---- C:\Windows\system32\drivers\ntfs.sys
2016-02-18 09:01:41 ----D---- C:\Program Files (x86)\CIGLER SOFTWARE
2016-02-18 09:01:31 ----D---- C:\ProgramData\CIGLER SOFTWARE

======List of files/folders modified in the last 1 month======

2016-03-15 20:28:34 ----D---- C:\Program Files\trend micro
2016-03-15 20:27:34 ----D---- C:\Windows\Prefetch
2016-03-15 20:23:36 ----D---- C:\Windows\winsxs
2016-03-15 20:19:41 ----D---- C:\ProgramData\boost_interprocess
2016-03-15 20:18:48 ----D---- C:\Windows\Temp
2016-03-15 20:15:38 ----A---- C:\Windows\SYSWOW64\log.txt
2016-03-15 20:13:03 ----D---- C:\Windows\system32\config
2016-03-15 20:11:04 ----D---- C:\Windows\SysWOW64
2016-03-15 20:11:04 ----D---- C:\Windows
2016-03-15 20:08:34 ----D---- C:\Windows\Tasks
2016-03-15 18:47:35 ----D---- C:\rsit
2016-03-15 15:17:22 ----HD---- C:\VTRoot
2016-03-15 13:10:49 ----A---- C:\Users\Buchtanen\AppData\Roaming\Network Meter_Usage.ini
2016-03-15 13:10:30 ----D---- C:\Program Files (x86)
2016-03-13 22:52:39 ----SHD---- C:\Config.Msi
2016-03-13 22:46:05 ----SHD---- C:\Windows\Installer
2016-03-13 11:51:25 ----D---- C:\Windows\System32
2016-03-13 11:51:25 ----D---- C:\Windows\inf
2016-03-13 11:51:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-11 14:07:04 ----D---- C:\ProgramData\Cisco
2016-03-11 13:25:58 ----D---- C:\Program Files\NetBeans 8.1
2016-03-11 13:16:57 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-03-10 16:50:04 ----D---- C:\Windows\rescache
2016-03-10 16:24:48 ----D---- C:\Windows\Microsoft.NET
2016-03-10 16:17:46 ----RSD---- C:\Windows\assembly
2016-03-10 13:17:33 ----D---- C:\Program Files\SUPERAntiSpyware
2016-03-10 13:10:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-03-10 13:10:36 ----D---- C:\Windows\system32\cs-CZ
2016-03-10 13:10:33 ----D---- C:\Program Files\Internet Explorer
2016-03-10 13:10:31 ----D---- C:\Windows\SYSWOW64\en-US
2016-03-10 13:10:08 ----D---- C:\Windows\system32\en-US
2016-03-10 13:10:05 ----D---- C:\Program Files (x86)\Internet Explorer
2016-03-10 13:09:24 ----D---- C:\Windows\AppPatch
2016-03-10 13:09:21 ----D---- C:\Windows\system32\drivers
2016-03-10 13:09:01 ----D---- C:\Program Files (x86)\Windows Media Player
2016-03-10 13:07:47 ----D---- C:\Program Files\Windows Media Player
2016-03-10 13:07:44 ----D---- C:\Windows\system32\DriverStore
2016-03-10 12:43:20 ----D---- C:\Windows\system32\appraiser
2016-03-10 12:41:38 ----SHD---- C:\System Volume Information
2016-03-09 14:17:44 ----D---- C:\Program Files (x86)\Opera Next
2016-03-09 13:57:55 ----D---- C:\Windows\system32\catroot2
2016-03-08 17:53:40 ----D---- C:\Users\Buchtanen\AppData\Roaming\npm
2016-03-08 16:14:05 ----D---- C:\Users\Buchtanen\AppData\Roaming\npm-cache
2016-03-08 14:14:31 ----D---- C:\Windows\system32\Tasks
2016-03-08 12:44:41 ----D---- C:\ProgramData\Atlassian
2016-03-06 00:30:18 ----D---- C:\Users\Buchtanen\AppData\Roaming\Skype
2016-03-02 12:29:22 ----A---- C:\Windows\system32\pwNative.exe
2016-03-02 12:29:15 ----RD---- C:\Program Files
2016-03-01 12:03:48 ----D---- C:\Windows\system32\NDF
2016-03-01 11:24:56 ----D---- C:\Users\Buchtanen\AppData\Roaming\BitComet
2016-02-29 13:43:20 ----SD---- C:\Windows\SYSWOW64\GWX
2016-02-29 13:43:18 ----SD---- C:\Windows\system32\GWX
2016-02-25 17:26:16 ----D---- C:\Windows\Panther
2016-02-25 15:45:08 ----D---- C:\Windows\tracing
2016-02-21 21:37:45 ----D---- C:\ProgramData\Oracle
2016-02-21 21:34:14 ----D---- C:\Program Files\Java
2016-02-21 21:30:36 ----D---- C:\Program Files (x86)\Java
2016-02-21 21:26:03 ----D---- C:\Program Files (x86)\Common Files
2016-02-21 21:24:37 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2016-02-18 09:01:31 ----HD---- C:\ProgramData

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 cumon;cumon; C:\Windows\system32\drivers\cumon.sys [2011-09-05 205512]
R0 Evdd;evdd; C:\Windows\system32\drivers\evdd.sys [2011-09-05 19568]
R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys [2014-10-22 155912]
R0 hotcore3;hc3ServiceName; C:\Windows\system32\DRIVERS\hotcore3.sys [2011-04-12 37456]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-09-14 437272]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys [2014-10-15 452040]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2015-11-18 21184]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2015-11-18 806032]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2015-08-05 45856]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2015-08-05 105096]
R1 nm3;Microsoft Network Monitor 3 Driver; C:\Windows\system32\DRIVERS\nm3.sys [2010-06-09 46392]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 Uim_IM;Universal Image Mounter Plugin; C:\Windows\System32\Drivers\Uim_IMx64.sys [2011-04-12 570320]
R1 UimBus;Universal Image Mounter Controller; C:\Windows\system32\DRIVERS\uimx64.sys [2011-04-12 57424]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2015-12-10 146944]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-10-08 19192]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-25 9359872]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-25 309760]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-11-26 36000]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-05-11 2229608]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-12-25 114704]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-11-26 298144]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-11-26 28832]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-11-26 201376]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-11-26 55456]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-11-26 154272]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-11-26 275616]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-29 3707864]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-09-27 76912]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-01-13 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-12-18 64624]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-09-30 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-09-30 180736]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-12-18 32496]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-08-01 1383472]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2012-08-07 35112]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-08-01 867064]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2015-01-16 38080]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2015-01-16 110336]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 massfilter_hs;HS HandSet Mass Storage Filter Driver; C:\Windows\system32\DRIVERS\massfilter_hs.sys [2011-08-15 18456]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-01-13 63704]
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\Windows\system32\DRIVERS\mcdbus.sys [2009-02-24 255552]
S3 moufiltr;Tablet Mouse Filter Driver; C:\Windows\system32\DRIVERS\moufiltr.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pneteth;PdaNet Broadband; C:\Windows\system32\DRIVERS\pneteth.sys [2011-11-24 15360]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-27 19456]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-07-20 247400]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2015-01-16 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2015-01-16 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2015-01-16 188232]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2015-01-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2015-09-08 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Serial Emulation Driver; C:\Windows\system32\DRIVERS\usbser.sys [2015-02-26 33280]
S3 vhidmini;Generic Virtual HID Driver; C:\Windows\system32\DRIVERS\walvhid.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2016-02-02 172344]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8; c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-25 204288]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-11-26 52896]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2015-09-11 5542472]
R2 CPMService;COMODO Programs Manager Service; C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe [2011-09-05 116032]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-12-09 311376]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-14 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-22 325656]
R2 MySQL57;MySQL57; C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe [2016-01-20 39209984]
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-02-01 135848]
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-02-01 135848]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-10-08 150016]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-22 2656280]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-02-01 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-02-01 125112]
S2 CSUService;COMODO System Utilities Service; C:\Program Files\COMODO\COMODO System Utilities\CSUService.exe [2012-02-24 347968]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-01-13 1135416]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-11 269504]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service; C:\Program Files\BitComet\tools\BitCometService.exe [2016-02-01 1296728]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2015-08-19 2265792]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-08-01 867080]
S3 GREGService;GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2015-02-09 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2016-01-29 73728]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-09 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-09-30 148080]
S3 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe [2010-11-12 257344]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-02-01 51376]
S4 ePowerSvc;Acer ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2010-10-29 868224]
S4 Live Updater Service;Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2012-04-05 255376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-02-01 135848]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S4 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2015-01-16 743688]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-09-11 838336]
S4 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-09-17 5702416]
S4 Updater Service;Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2012-04-05 255376]

-----------------EOF-----------------

[Rudy]

Smazáno. Nastala nějaká změna?

[Buchtanen]

zda se ze ano...
jeste to budu testovat, ale predbezne je vse sviznejsi...

pred tim tuhl chrome, nepravidelne na nejakou dobu, po chvili se opet probral...
spousteni aplikaci trvalo nekdy vecnost...
po restartu nestartoval Comodo Interner Security, musel se startovat rucne... Nic z toho ted nepozoruji...

Mnohokrate dekuji za pomoc.

[Rudy]

Rádo se stalo!