Logfile of random's system information tool 1.10 (written by random/random)
Run by m at 2016-04-18 19:51:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 599 GB (63%) free of 954 GB
Total RAM: 8010 MB (66% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:51:37, on 18.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe
C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\m.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.samsungsetup.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: InCD Helper (InCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung UPD Service2 - Unknown owner - C:\Windows\System32\SUPDSvc2.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9874 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"taskhost.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Windows\System32\igfxtray.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
/fmw.trayonly
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\Windows\splwow64.exe 8192
"C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE"
"C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE"
"C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe" /MainProcess 2956 /PrinterName "Canon MG5500 series Printer (kopie 1)" /ScannerName "Canon MG5500 series Network" /Language cs-CZ /Startup
"C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe" -f="SM_CreateListBG"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
taskmgr.exe /3
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\m\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_213_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMS.job - C:\Windows\AutoKMS\AutoKMS.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Norton Security Scan for m.job - C:\PROGRA~2\NORTON~2\Engine\431~1.3\Nss.exe /scan-quick /scheduled
=========Mozilla firefox=========
ProfilePath - C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.2.8\\npsitesafety.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\extensions\
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\searchplugins\
firmy.cz-190921.xml
mapy.cz-190921.xml
seznam.cz-190921.xml
videa.seznam.cz-190921.xml
zbozi.cz-190921.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-03 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12 715016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-03 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-07 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-07 439576]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-07 170264]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-03-07 2821936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlazeServoTool]
C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe [2010-03-06 286720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonQuickMenu]
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2014-03-25 1284680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CDAServer]
C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flvto YouTube Downloader]
C:\Users\m\AppData\Local\Flvto\FlvtoYoutubeDownloader.exe [2015-10-26 524800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\m\AppData\Roaming\ICQM\icq.exe [2015-12-01 29919576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files (x86)\Nero\Tools\InCD\InCD.exe [2009-10-16 1060136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2015-07-11 170280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBHGui]
C:\Program Files (x86)\Nero\Tools\InCD\NBHGui.exe [2009-10-16 1600816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]
C:\Program Files\VDownloader\VDownloader4.exe [2015-10-05 2055168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Firefox Preloader.lnk]
C:\PROGRA~2\FIREFO~1\FIREFO~1.EXE [2005-02-09 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\385C9A~1.150\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Audio Control Panel Autostart.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\MULTI-~1\SOUNDC~2.EXE [2015-09-03 315392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Control Panel.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\USBAUD~1\SOUNDC~1.EXE [2013-08-29 388800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^m^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2015-10-13 246472]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-02-27 291608]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-03-23 186640]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2013-02-19 453736]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-03 7139256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-28 430592]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-18 19:47:33 ----D---- C:\rsit
2016-04-14 03:16:43 ----SHD---- C:\Config.Msi
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-13 10:08:35 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\rpcss.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-13 10:08:25 ----A---- C:\Windows\system32\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-13 10:08:24 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64win.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\winsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srcore.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\smss.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\secur32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rstrui.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\lsass.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kernel32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\conhost.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidapi.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\advapi32.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\adtschema.dll
2016-04-13 10:08:16 ----A---- C:\Windows\system32\win32k.sys
2016-04-13 10:08:16 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-13 10:08:11 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapi.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\invagent.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\generaltel.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\devinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-13 10:08:07 ----A---- C:\Windows\system32\appraiser.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aepic.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aeinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\acmigration.dll
2016-04-13 10:08:04 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samsrv.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samlib.dll
2016-04-13 10:08:01 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-13 10:08:01 ----A---- C:\Windows\system32\tzres.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\inseng.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\iernonce.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-13 10:05:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-13 10:05:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\urlmon.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\occache.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-13 10:05:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iesetup.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iertutil.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-13 10:05:45 ----A---- C:\Windows\system32\vbscript.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\ieui.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\webcheck.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\jscript.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieframe.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\wininet.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\msrating.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9.dll
2016-04-13 10:05:42 ----A---- C:\Windows\system32\mshtml.dll
2016-04-12 11:27:57 ----D---- C:\Users\m\AppData\Roaming\MPC-HC
2016-04-12 11:27:09 ----D---- C:\Program Files\MPC-HC
2016-04-12 10:04:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-04-11 17:00:10 ----D---- C:\Users\m\AppData\Roaming\Samsung
2016-04-11 16:59:58 ----D---- C:\Program Files\Common Files\Common Desktop Agent
2016-04-08 12:07:53 ----D---- C:\Program Files (x86)\Apple Software Update
2016-04-04 09:15:00 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-04-03 22:52:15 ----A---- C:\Windows\system32\aswBoot.exe
2016-04-03 22:50:46 ----D---- C:\Users\m\AppData\Roaming\AVAST Software
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSP.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-04-03 22:50:05 ----A---- C:\Windows\avastSS.scr
2016-04-03 22:49:02 ----D---- C:\Program Files\AVAST Software
2016-04-03 21:00:16 ----D---- C:\Program Files (x86)\PreSonus
2016-04-03 20:54:27 ----D---- C:\ProgramData\PreSonus
2016-04-03 20:54:26 ----D---- C:\Users\m\AppData\Roaming\PreSonus
2016-04-03 20:53:34 ----D---- C:\Program Files\PreSonus
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudioks_x64.sys
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudio_x64.sys
2016-03-29 23:01:37 ----D---- C:\Program Files (x86)\Steinberg
2016-03-29 22:58:26 ----D---- C:\Program Files (x86)\Syncrosoft
2016-03-29 22:58:26 ----A---- C:\Windows\SYSWOW64\SYNSOPOS.exe
2016-03-29 22:58:24 ----A---- C:\Windows\SYSWOW64\SYNSOACC.dll
2016-03-29 22:58:24 ----A---- C:\Windows\system32\SYNSOACC.dll
2016-03-29 22:58:22 ----D---- C:\Program Files\eLicenser
2016-03-27 16:59:27 ----D---- C:\Users\m\AppData\Roaming\Avolites
2016-03-24 12:57:12 ----D---- C:\Program Files (x86)\Avolites
2016-03-24 12:33:07 ----D---- C:\AVOLITES
======List of files/folders modified in the last 1 month======
2016-04-18 19:51:37 ----D---- C:\Windows\Temp
2016-04-18 19:51:37 ----D---- C:\Program Files\trend micro
2016-04-17 13:08:54 ----D---- C:\Windows\System32
2016-04-17 13:08:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-17 13:08:53 ----D---- C:\Windows\inf
2016-04-17 13:05:58 ----D---- C:\Windows\system32\config
2016-04-17 13:05:32 ----D---- C:\Windows\Prefetch
2016-04-15 19:09:22 ----SHD---- C:\System Volume Information
2016-04-15 14:28:30 ----D---- C:\Windows\Panther
2016-04-15 13:36:12 ----HD---- C:\$WINDOWS.~BT
2016-04-14 21:52:37 ----D---- C:\Windows\rescache
2016-04-14 11:45:22 ----D---- C:\Windows\system32\Tasks
2016-04-14 11:45:22 ----D---- C:\Program Files (x86)\Opera
2016-04-14 03:43:47 ----D---- C:\Windows\Microsoft.NET
2016-04-14 03:43:15 ----RSD---- C:\Windows\assembly
2016-04-14 03:37:14 ----D---- C:\Windows\winsxs
2016-04-14 03:36:13 ----D---- C:\Windows
2016-04-14 03:36:00 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-14 03:33:35 ----D---- C:\Windows\SysWOW64
2016-04-14 03:33:34 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-14 03:33:34 ----D---- C:\Windows\system32\drivers
2016-04-14 03:33:34 ----D---- C:\Windows\system32\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\en-US
2016-04-14 03:33:33 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\system32\Boot
2016-04-14 03:33:33 ----D---- C:\Windows\system32\appraiser
2016-04-14 03:33:33 ----D---- C:\Windows\Logs
2016-04-14 03:33:33 ----D---- C:\Windows\AppPatch
2016-04-14 03:33:31 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-14 03:33:31 ----D---- C:\Program Files\Internet Explorer
2016-04-14 03:33:30 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-14 03:33:29 ----D---- C:\Windows\system32\DriverStore
2016-04-14 03:18:10 ----SHD---- C:\Windows\Installer
2016-04-14 03:14:21 ----D---- C:\Windows\system32\MRT
2016-04-14 03:08:39 ----D---- C:\Windows\debug
2016-04-14 03:08:37 ----A---- C:\Windows\system32\MRT.exe
2016-04-14 03:07:43 ----D---- C:\ProgramData\Microsoft Help
2016-04-14 03:01:12 ----D---- C:\Windows\system32\catroot2
2016-04-12 11:34:06 ----D---- C:\Windows\Tasks
2016-04-12 11:34:06 ----D---- C:\Users\m\AppData\Roaming\Yandex
2016-04-12 11:32:22 ----D---- C:\Windows\pss
2016-04-12 11:29:27 ----RD---- C:\Program Files (x86)
2016-04-12 11:29:13 ----D---- C:\Windows\Minidump
2016-04-12 11:27:09 ----D---- C:\Program Files
2016-04-11 17:00:09 ----D---- C:\ProgramData\Samsung
2016-04-11 16:59:58 ----D---- C:\Program Files\Common Files
2016-04-11 16:59:58 ----D---- C:\Program Files (x86)\Common Files
2016-04-11 16:59:54 ----D---- C:\Program Files (x86)\Samsung
2016-04-11 16:56:12 ----D---- C:\Windows\system32\catroot
2016-04-11 14:55:16 ----HD---- C:\ProgramData
2016-04-09 11:04:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-04-08 12:08:41 ----D---- C:\ProgramData\CanonIJPLM
2016-04-08 12:08:30 ----D---- C:\Users\m\AppData\Roaming\Apple Computer
2016-04-06 10:18:38 ----N---- C:\Windows\system32\MpSigStub.exe
2016-04-04 09:14:54 ----D---- C:\ProgramData\AVAST Software
2016-04-03 22:27:08 ----D---- C:\ProgramData\AVG
2016-04-03 22:27:08 ----D---- C:\Program Files (x86)\AVG
2016-04-03 22:27:01 ----D---- C:\ProgramData\MFAData
2016-04-03 21:44:54 ----D---- C:\Users\m\AppData\Roaming\Steinberg
2016-04-03 21:40:26 ----D---- C:\Program Files\Steinberg
2016-04-03 21:13:53 ----D---- C:\Users\m\AppData\Roaming\Ableton
2016-04-03 21:13:32 ----D---- C:\ProgramData\Package Cache
2016-04-03 21:13:17 ----HD---- C:\Windows\system32\GroupPolicy
2016-04-03 21:10:32 ----D---- C:\ProgramData\Ableton
2016-04-03 20:53:35 ----D---- C:\Program Files\Common Files\Propellerhead Software
2016-03-31 19:47:52 ----D---- C:\Program Files (x86)\MP3Recorder
2016-03-29 23:01:31 ----D---- C:\ProgramData\eLicenser
2016-03-29 22:58:27 ----D---- C:\Program Files (x86)\eLicenser
2016-03-28 09:33:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-03-27 16:58:51 ----D---- C:\Users\m\AppData\Roaming\Skype
2016-03-25 10:11:51 ----SD---- C:\Windows\SYSWOW64\GWX
2016-03-25 10:11:50 ----SD---- C:\Windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-04-03 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-04-03 287016]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-02-27 16152]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-02-20 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-04-04 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-04-03 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-04-03 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-04-03 463744]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-07 283064]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-03-16 498512]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-01-11 26528]
R1 InCDRec;Nero UDF File System Recognizer Driver; C:\Windows\system32\DRIVERS\InCDRec.sys [2009-10-16 22040]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-04-03 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-04-03 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-04-03 165344]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-02-20 3538432]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-11-04 68648]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-11-04 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-09-02 51752]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2012-05-03 81928]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2012-03-07 238384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-28 14741632]
R3 InCDFs;Nero UDF File System Driver; C:\Windows\system32\DRIVERS\InCDFs.sys [2009-10-16 168984]
R3 InCDPass;Nero InCDPass Driver; C:\Windows\system32\DRIVERS\InCDPass.sys [2009-10-16 60952]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-02-27 356120]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-02-27 788760]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2012-01-19 435240]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2015-06-27 507392]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2016-01-05 165504]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-11-13 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrv;SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver.sys []
S3 SoundcraftUSBAudio;SoundcraftUSBAudio; C:\Windows\system32\DRIVERS\SoundcraftUSBAudio_x64.sys [2015-09-03 269312]
S3 SoundcraftUSBAudioks;SoundcraftUSBAudioks; C:\Windows\system32\DRIVERS\SoundcraftUSBAudioks_x64.sys [2015-09-03 50688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-11-13 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2014-11-13 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-10 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 WinUsb;Alpha; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-03 237096]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-03-23 1074448]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-03-02 355920]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 InCDSrv;InCD Helper; C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe [2009-10-16 1420592]
R2 NeroRegInCDSrv;Nero Registry InCD Service; C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe [2009-10-16 53560]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-02-20 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-20 1260320]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09 269504]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-07 276248]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-07-11 644904]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-12 146888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 Samsung UPD Service2;Samsung UPD Service2; C:\Windows\System32\SUPDSvc2.exe [2011-12-02 165456]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zoufale pomalý notes prosím o kontrolu.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zoufale pomalý notes prosím o kontrolu.
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zoufale pomalý notes prosím o kontrolu.
# AdwCleaner v5.112 - Log soubor vytvořen 18/04/2016 o 20:58:14
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-17.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Jméno uživatele : m - M-PC
# Spuštěno z : C:\Users\m\Desktop\adwcleaner_5.112.exe
# Volba : Skenovat
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
Složka nalezeno : C:\Program Files (x86)\Common Files\AVG Secure Search
Složka nalezeno : C:\Program Files\Common Files\AVG Secure Search
Složka nalezeno : C:\ProgramData\AVG Secure Search
Složka nalezeno : C:\ProgramData\AVG Security Toolbar
Složka nalezeno : C:\ProgramData\avg web tuneup
Složka nalezeno : C:\ProgramData\Application Data\AVG Secure Search
Složka nalezeno : C:\ProgramData\Application Data\AVG Security Toolbar
Složka nalezeno : C:\ProgramData\Application Data\avg web tuneup
Složka nalezeno : C:\Users\m\AppData\Local\avg web tuneup
Složka nalezeno : C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
***** [ Soubory ] *****
Soubor nalezeno : C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage
***** [ DLL ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
Klávesa nalezeno : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
Klávesa nalezeno : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Klávesa nalezeno : HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
Klávesa nalezeno : HKLM\SOFTWARE\Classes\PCSuiteContactsView
Klávesa nalezeno : HKLM\SOFTWARE\Classes\PCSuiteMessagesView
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Klávesa nalezeno : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Klávesa nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klávesa nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Klávesa nalezeno : HKCU\Software\Mail.Ru
Klávesa nalezeno : HKCU\Software\AppDataLow\Software\Mail.Ru
Klávesa nalezeno : HKLM\SOFTWARE\AVG Tuneup
Klávesa nalezeno : HKU\S-1-5-21-437069544-115546471-2938306295-1000\Software\Mail.Ru
Klávesa nalezeno : HKU\S-1-5-21-437069544-115546471-2938306295-1000\Software\AppDataLow\Software\Mail.Ru
Klávesa nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\62564963F1394F9DC7360C3E5868BCB8
Klávesa nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klávesa nalezeno : HKU\S-1-5-21-437069544-115546471-2938306295-1000\Software\Microsoft\Internet Explorer\SearchScopes\62564963F1394F9DC7360C3E5868BCB8
Klávesa nalezeno : HKU\S-1-5-21-437069544-115546471-2938306295-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klávesa nalezeno : [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\ApnTBMon
***** [ Webové prohlížeče ] *****
*************************
C:\AdwCleaner\AdwCleaner[C2].txt - [7825 bytes] - [15/12/2015 21:41:28]
C:\AdwCleaner\AdwCleaner[C3].txt - [746 bytes] - [19/12/2015 15:14:10]
C:\AdwCleaner\AdwCleaner[S1].txt - [4345 bytes] - [18/04/2016 20:58:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [7682 bytes] - [15/12/2015 21:40:33]
C:\AdwCleaner\AdwCleaner[S3].txt - [654 bytes] - [19/12/2015 15:12:39]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4563 bytes] ##########
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-17.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Jméno uživatele : m - M-PC
# Spuštěno z : C:\Users\m\Desktop\adwcleaner_5.112.exe
# Volba : Skenovat
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
Složka nalezeno : C:\Program Files (x86)\Common Files\AVG Secure Search
Složka nalezeno : C:\Program Files\Common Files\AVG Secure Search
Složka nalezeno : C:\ProgramData\AVG Secure Search
Složka nalezeno : C:\ProgramData\AVG Security Toolbar
Složka nalezeno : C:\ProgramData\avg web tuneup
Složka nalezeno : C:\ProgramData\Application Data\AVG Secure Search
Složka nalezeno : C:\ProgramData\Application Data\AVG Security Toolbar
Složka nalezeno : C:\ProgramData\Application Data\avg web tuneup
Složka nalezeno : C:\Users\m\AppData\Local\avg web tuneup
Složka nalezeno : C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
***** [ Soubory ] *****
Soubor nalezeno : C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage
***** [ DLL ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
Klávesa nalezeno : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
Klávesa nalezeno : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Klávesa nalezeno : HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
Klávesa nalezeno : HKLM\SOFTWARE\Classes\PCSuiteContactsView
Klávesa nalezeno : HKLM\SOFTWARE\Classes\PCSuiteMessagesView
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Klávesa nalezeno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Klávesa nalezeno : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Klávesa nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klávesa nalezeno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
Klávesa nalezeno : HKCU\Software\Mail.Ru
Klávesa nalezeno : HKCU\Software\AppDataLow\Software\Mail.Ru
Klávesa nalezeno : HKLM\SOFTWARE\AVG Tuneup
Klávesa nalezeno : HKU\S-1-5-21-437069544-115546471-2938306295-1000\Software\Mail.Ru
Klávesa nalezeno : HKU\S-1-5-21-437069544-115546471-2938306295-1000\Software\AppDataLow\Software\Mail.Ru
Klávesa nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\62564963F1394F9DC7360C3E5868BCB8
Klávesa nalezeno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klávesa nalezeno : HKU\S-1-5-21-437069544-115546471-2938306295-1000\Software\Microsoft\Internet Explorer\SearchScopes\62564963F1394F9DC7360C3E5868BCB8
Klávesa nalezeno : HKU\S-1-5-21-437069544-115546471-2938306295-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klávesa nalezeno : [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\ApnTBMon
***** [ Webové prohlížeče ] *****
*************************
C:\AdwCleaner\AdwCleaner[C2].txt - [7825 bytes] - [15/12/2015 21:41:28]
C:\AdwCleaner\AdwCleaner[C3].txt - [746 bytes] - [19/12/2015 15:14:10]
C:\AdwCleaner\AdwCleaner[S1].txt - [4345 bytes] - [18/04/2016 20:58:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [7682 bytes] - [15/12/2015 21:40:33]
C:\AdwCleaner\AdwCleaner[S3].txt - [654 bytes] - [19/12/2015 15:12:39]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4563 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zoufale pomalý notes prosím o kontrolu.
Neklikl jste na >cleaning<. Zkuste ještě jednou, ADW nemazal.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zoufale pomalý notes prosím o kontrolu.
# AdwCleaner v5.112 - Log soubor vytvořen 18/04/2016 o 21:01:13
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-17.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Jméno uživatele : m - M-PC
# Spuštěno z : C:\Users\m\Desktop\adwcleaner_5.112.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazáno : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Složka smazáno : C:\Program Files\Common Files\AVG Secure Search
[-] Složka smazáno : C:\ProgramData\AVG Secure Search
[-] Složka smazáno : C:\ProgramData\AVG Security Toolbar
[-] Složka smazáno : C:\ProgramData\avg web tuneup
[#] Složka smazáno : C:\ProgramData\Application Data\AVG Secure Search
[#] Složka smazáno : C:\ProgramData\Application Data\AVG Security Toolbar
[#] Složka smazáno : C:\ProgramData\Application Data\avg web tuneup
[-] Složka smazáno : C:\Users\m\AppData\Local\avg web tuneup
[-] Složka smazáno : C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
***** [ Soubory ] *****
[-] Soubor smazáno : C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage
***** [ DLLs ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
[-] Klávesa smazáno : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Klávesa smazáno : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Klávesa smazáno : HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\PCSuiteContactsView
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\PCSuiteMessagesView
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klávesa smazáno : HKCU\Software\Mail.Ru
[-] Klávesa smazáno : HKCU\Software\AppDataLow\Software\Mail.Ru
[-] Klávesa smazáno : HKLM\SOFTWARE\AVG Tuneup
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\62564963F1394F9DC7360C3E5868BCB8
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\ApnTBMon
***** [ Webové prohlížeče ] *****
*************************
:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [3949 bytes] - [18/04/2016 21:01:13]
C:\AdwCleaner\AdwCleaner[C2].txt - [7825 bytes] - [15/12/2015 21:41:28]
C:\AdwCleaner\AdwCleaner[C3].txt - [746 bytes] - [19/12/2015 15:14:10]
C:\AdwCleaner\AdwCleaner[S1].txt - [4646 bytes] - [18/04/2016 20:58:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [7682 bytes] - [15/12/2015 21:40:33]
C:\AdwCleaner\AdwCleaner[S3].txt - [654 bytes] - [19/12/2015 15:12:39]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4385 bytes] ##########
# Aktualizováno 17/04/2016 by Xplode
# Databáze : 2016-04-17.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Jméno uživatele : m - M-PC
# Spuštěno z : C:\Users\m\Desktop\adwcleaner_5.112.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazáno : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Složka smazáno : C:\Program Files\Common Files\AVG Secure Search
[-] Složka smazáno : C:\ProgramData\AVG Secure Search
[-] Složka smazáno : C:\ProgramData\AVG Security Toolbar
[-] Složka smazáno : C:\ProgramData\avg web tuneup
[#] Složka smazáno : C:\ProgramData\Application Data\AVG Secure Search
[#] Složka smazáno : C:\ProgramData\Application Data\AVG Security Toolbar
[#] Složka smazáno : C:\ProgramData\Application Data\avg web tuneup
[-] Složka smazáno : C:\Users\m\AppData\Local\avg web tuneup
[-] Složka smazáno : C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
***** [ Soubory ] *****
[-] Soubor smazáno : C:\Users\m\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage
***** [ DLLs ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
[-] Klávesa smazáno : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Klávesa smazáno : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Klávesa smazáno : HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\PCSuiteContactsView
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\PCSuiteMessagesView
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klávesa smazáno : HKCU\Software\Mail.Ru
[-] Klávesa smazáno : HKCU\Software\AppDataLow\Software\Mail.Ru
[-] Klávesa smazáno : HKLM\SOFTWARE\AVG Tuneup
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\62564963F1394F9DC7360C3E5868BCB8
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\ApnTBMon
***** [ Webové prohlížeče ] *****
*************************
:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [3949 bytes] - [18/04/2016 21:01:13]
C:\AdwCleaner\AdwCleaner[C2].txt - [7825 bytes] - [15/12/2015 21:41:28]
C:\AdwCleaner\AdwCleaner[C3].txt - [746 bytes] - [19/12/2015 15:14:10]
C:\AdwCleaner\AdwCleaner[S1].txt - [4646 bytes] - [18/04/2016 20:58:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [7682 bytes] - [15/12/2015 21:40:33]
C:\AdwCleaner\AdwCleaner[S3].txt - [654 bytes] - [19/12/2015 15:12:39]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4385 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zoufale pomalý notes prosím o kontrolu.
Teď je to OK. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zoufale pomalý notes prosím o kontrolu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by m at 2016-04-19 08:36:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 600 GB (63%) free of 954 GB
Total RAM: 8010 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:36:16, on 19.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\m.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.samsungsetup.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: InCD Helper (InCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung UPD Service2 - Unknown owner - C:\Windows\System32\SUPDSvc2.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9577 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
taskeng.exe {F24E60EB-F5A6-4175-A803-50D424ECDFCD}
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
"C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[C1].txt
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
/fmw.trayonly
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\wbem\wmiprvse.exe
taskhost.exe $(Arg0)
taskeng.exe {24F8EC4B-6570-49A1-9580-469F7CBE3424}
taskeng.exe {EA834406-F760-4865-AD32-908A9AACB44F}
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\m\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_213_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMS.job - C:\Windows\AutoKMS\AutoKMS.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Norton Security Scan for m.job - C:\PROGRA~2\NORTON~2\Engine\431~1.3\Nss.exe /scan-quick /scheduled
=========Mozilla firefox=========
ProfilePath - C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\extensions\
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\searchplugins\
firmy.cz-190921.xml
mapy.cz-190921.xml
seznam.cz-190921.xml
videa.seznam.cz-190921.xml
zbozi.cz-190921.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-03 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12 715016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-03 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-07 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-07 439576]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-07 170264]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-03-07 2821936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlazeServoTool]
C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe [2010-03-06 286720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonQuickMenu]
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2014-03-25 1284680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CDAServer]
C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flvto YouTube Downloader]
C:\Users\m\AppData\Local\Flvto\FlvtoYoutubeDownloader.exe [2015-10-26 524800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\m\AppData\Roaming\ICQM\icq.exe [2015-12-01 29919576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files (x86)\Nero\Tools\InCD\InCD.exe [2009-10-16 1060136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2015-07-11 170280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBHGui]
C:\Program Files (x86)\Nero\Tools\InCD\NBHGui.exe [2009-10-16 1600816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]
C:\Program Files\VDownloader\VDownloader4.exe [2015-10-05 2055168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Firefox Preloader.lnk]
C:\PROGRA~2\FIREFO~1\FIREFO~1.EXE [2005-02-09 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\385C9A~1.150\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Audio Control Panel Autostart.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\MULTI-~1\SOUNDC~2.EXE [2015-09-03 315392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Control Panel.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\USBAUD~1\SOUNDC~1.EXE [2013-08-29 388800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^m^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2015-10-13 246472]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-02-27 291608]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-03-23 186640]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2013-02-19 453736]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-03 7139256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-28 430592]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-18 19:47:33 ----D---- C:\rsit
2016-04-14 03:16:43 ----SHD---- C:\Config.Msi
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-13 10:08:35 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\rpcss.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-13 10:08:25 ----A---- C:\Windows\system32\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-13 10:08:24 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64win.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\winsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srcore.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\smss.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\secur32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rstrui.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\lsass.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kernel32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\conhost.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidapi.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\advapi32.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\adtschema.dll
2016-04-13 10:08:16 ----A---- C:\Windows\system32\win32k.sys
2016-04-13 10:08:16 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-13 10:08:11 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapi.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\invagent.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\generaltel.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\devinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-13 10:08:07 ----A---- C:\Windows\system32\appraiser.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aepic.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aeinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\acmigration.dll
2016-04-13 10:08:04 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samsrv.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samlib.dll
2016-04-13 10:08:01 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-13 10:08:01 ----A---- C:\Windows\system32\tzres.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\inseng.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\iernonce.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-13 10:05:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-13 10:05:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\urlmon.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\occache.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-13 10:05:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iesetup.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iertutil.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-13 10:05:45 ----A---- C:\Windows\system32\vbscript.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\ieui.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\webcheck.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\jscript.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieframe.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\wininet.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\msrating.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9.dll
2016-04-13 10:05:42 ----A---- C:\Windows\system32\mshtml.dll
2016-04-12 11:27:57 ----D---- C:\Users\m\AppData\Roaming\MPC-HC
2016-04-12 11:27:09 ----D---- C:\Program Files\MPC-HC
2016-04-12 10:04:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-04-11 17:00:10 ----D---- C:\Users\m\AppData\Roaming\Samsung
2016-04-11 16:59:58 ----D---- C:\Program Files\Common Files\Common Desktop Agent
2016-04-08 12:07:53 ----D---- C:\Program Files (x86)\Apple Software Update
2016-04-04 09:15:00 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-04-03 22:52:15 ----A---- C:\Windows\system32\aswBoot.exe
2016-04-03 22:50:46 ----D---- C:\Users\m\AppData\Roaming\AVAST Software
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSP.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-04-03 22:50:05 ----A---- C:\Windows\avastSS.scr
2016-04-03 22:49:02 ----D---- C:\Program Files\AVAST Software
2016-04-03 21:00:16 ----D---- C:\Program Files (x86)\PreSonus
2016-04-03 20:54:27 ----D---- C:\ProgramData\PreSonus
2016-04-03 20:54:26 ----D---- C:\Users\m\AppData\Roaming\PreSonus
2016-04-03 20:53:34 ----D---- C:\Program Files\PreSonus
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudioks_x64.sys
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudio_x64.sys
2016-03-29 23:01:37 ----D---- C:\Program Files (x86)\Steinberg
2016-03-29 22:58:26 ----D---- C:\Program Files (x86)\Syncrosoft
2016-03-29 22:58:26 ----A---- C:\Windows\SYSWOW64\SYNSOPOS.exe
2016-03-29 22:58:24 ----A---- C:\Windows\SYSWOW64\SYNSOACC.dll
2016-03-29 22:58:24 ----A---- C:\Windows\system32\SYNSOACC.dll
2016-03-29 22:58:22 ----D---- C:\Program Files\eLicenser
2016-03-27 16:59:27 ----D---- C:\Users\m\AppData\Roaming\Avolites
2016-03-24 12:57:12 ----D---- C:\Program Files (x86)\Avolites
2016-03-24 12:33:07 ----D---- C:\AVOLITES
======List of files/folders modified in the last 1 month======
2016-04-19 08:36:16 ----D---- C:\Windows\Temp
2016-04-19 08:36:16 ----D---- C:\Program Files\trend micro
2016-04-18 21:08:20 ----D---- C:\Windows\System32
2016-04-18 21:08:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-18 21:08:19 ----D---- C:\Windows\inf
2016-04-18 21:01:14 ----HD---- C:\ProgramData
2016-04-18 21:01:14 ----D---- C:\Program Files\Common Files
2016-04-18 21:01:14 ----D---- C:\Program Files (x86)\Common Files
2016-04-18 21:01:13 ----D---- C:\AdwCleaner
2016-04-17 13:05:58 ----D---- C:\Windows\system32\config
2016-04-17 13:05:32 ----D---- C:\Windows\Prefetch
2016-04-15 19:09:22 ----SHD---- C:\System Volume Information
2016-04-15 14:28:30 ----D---- C:\Windows\Panther
2016-04-15 13:36:12 ----HD---- C:\$WINDOWS.~BT
2016-04-14 21:52:37 ----D---- C:\Windows\rescache
2016-04-14 11:45:22 ----D---- C:\Windows\system32\Tasks
2016-04-14 11:45:22 ----D---- C:\Program Files (x86)\Opera
2016-04-14 03:43:47 ----D---- C:\Windows\Microsoft.NET
2016-04-14 03:43:15 ----RSD---- C:\Windows\assembly
2016-04-14 03:37:14 ----D---- C:\Windows\winsxs
2016-04-14 03:36:13 ----D---- C:\Windows
2016-04-14 03:36:00 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-14 03:33:35 ----D---- C:\Windows\SysWOW64
2016-04-14 03:33:34 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-14 03:33:34 ----D---- C:\Windows\system32\drivers
2016-04-14 03:33:34 ----D---- C:\Windows\system32\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\en-US
2016-04-14 03:33:33 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\system32\Boot
2016-04-14 03:33:33 ----D---- C:\Windows\system32\appraiser
2016-04-14 03:33:33 ----D---- C:\Windows\Logs
2016-04-14 03:33:33 ----D---- C:\Windows\AppPatch
2016-04-14 03:33:31 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-14 03:33:31 ----D---- C:\Program Files\Internet Explorer
2016-04-14 03:33:30 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-14 03:33:29 ----D---- C:\Windows\system32\DriverStore
2016-04-14 03:18:10 ----SHD---- C:\Windows\Installer
2016-04-14 03:14:21 ----D---- C:\Windows\system32\MRT
2016-04-14 03:08:39 ----D---- C:\Windows\debug
2016-04-14 03:08:37 ----A---- C:\Windows\system32\MRT.exe
2016-04-14 03:07:43 ----D---- C:\ProgramData\Microsoft Help
2016-04-14 03:01:12 ----D---- C:\Windows\system32\catroot2
2016-04-12 11:34:06 ----D---- C:\Windows\Tasks
2016-04-12 11:34:06 ----D---- C:\Users\m\AppData\Roaming\Yandex
2016-04-12 11:32:22 ----D---- C:\Windows\pss
2016-04-12 11:29:27 ----RD---- C:\Program Files (x86)
2016-04-12 11:29:13 ----D---- C:\Windows\Minidump
2016-04-12 11:27:09 ----D---- C:\Program Files
2016-04-11 17:00:09 ----D---- C:\ProgramData\Samsung
2016-04-11 16:59:54 ----D---- C:\Program Files (x86)\Samsung
2016-04-11 16:56:12 ----D---- C:\Windows\system32\catroot
2016-04-09 11:04:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-04-08 12:08:41 ----D---- C:\ProgramData\CanonIJPLM
2016-04-08 12:08:30 ----D---- C:\Users\m\AppData\Roaming\Apple Computer
2016-04-06 10:18:38 ----N---- C:\Windows\system32\MpSigStub.exe
2016-04-04 09:14:54 ----D---- C:\ProgramData\AVAST Software
2016-04-03 22:27:08 ----D---- C:\ProgramData\AVG
2016-04-03 22:27:08 ----D---- C:\Program Files (x86)\AVG
2016-04-03 22:27:01 ----D---- C:\ProgramData\MFAData
2016-04-03 21:44:54 ----D---- C:\Users\m\AppData\Roaming\Steinberg
2016-04-03 21:40:26 ----D---- C:\Program Files\Steinberg
2016-04-03 21:13:53 ----D---- C:\Users\m\AppData\Roaming\Ableton
2016-04-03 21:13:32 ----D---- C:\ProgramData\Package Cache
2016-04-03 21:13:17 ----HD---- C:\Windows\system32\GroupPolicy
2016-04-03 21:10:32 ----D---- C:\ProgramData\Ableton
2016-04-03 20:53:35 ----D---- C:\Program Files\Common Files\Propellerhead Software
2016-03-31 19:47:52 ----D---- C:\Program Files (x86)\MP3Recorder
2016-03-29 23:01:31 ----D---- C:\ProgramData\eLicenser
2016-03-29 22:58:27 ----D---- C:\Program Files (x86)\eLicenser
2016-03-28 09:33:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-03-27 16:58:51 ----D---- C:\Users\m\AppData\Roaming\Skype
2016-03-25 10:11:51 ----SD---- C:\Windows\SYSWOW64\GWX
2016-03-25 10:11:50 ----SD---- C:\Windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-04-03 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-04-03 287016]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-02-27 16152]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-02-20 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-04-04 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-04-03 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-04-03 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-04-03 463744]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-07 283064]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-03-16 498512]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-01-11 26528]
R1 InCDRec;Nero UDF File System Recognizer Driver; C:\Windows\system32\DRIVERS\InCDRec.sys [2009-10-16 22040]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-04-03 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-04-03 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-04-03 165344]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-02-20 3538432]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-11-04 68648]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-11-04 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-09-02 51752]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2012-05-03 81928]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2012-03-07 238384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-28 14741632]
R3 InCDFs;Nero UDF File System Driver; C:\Windows\system32\DRIVERS\InCDFs.sys [2009-10-16 168984]
R3 InCDPass;Nero InCDPass Driver; C:\Windows\system32\DRIVERS\InCDPass.sys [2009-10-16 60952]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-02-27 356120]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-02-27 788760]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2012-01-19 435240]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2015-06-27 507392]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2016-01-05 165504]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-11-13 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrv;SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver.sys []
S3 SoundcraftUSBAudio;SoundcraftUSBAudio; C:\Windows\system32\DRIVERS\SoundcraftUSBAudio_x64.sys [2015-09-03 269312]
S3 SoundcraftUSBAudioks;SoundcraftUSBAudioks; C:\Windows\system32\DRIVERS\SoundcraftUSBAudioks_x64.sys [2015-09-03 50688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-11-13 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2014-11-13 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-10 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 WinUsb;Alpha; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-03 237096]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-03-23 1074448]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-03-02 355920]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 InCDSrv;InCD Helper; C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe [2009-10-16 1420592]
R2 NeroRegInCDSrv;Nero Registry InCD Service; C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe [2009-10-16 53560]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-02-20 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-20 1260320]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09 269504]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-07 276248]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-07-11 644904]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-12 146888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Samsung UPD Service2;Samsung UPD Service2; C:\Windows\System32\SUPDSvc2.exe [2011-12-02 165456]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Run by m at 2016-04-19 08:36:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 600 GB (63%) free of 954 GB
Total RAM: 8010 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:36:16, on 19.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\m.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.samsungsetup.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: InCD Helper (InCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung UPD Service2 - Unknown owner - C:\Windows\System32\SUPDSvc2.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9577 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
taskeng.exe {F24E60EB-F5A6-4175-A803-50D424ECDFCD}
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
"C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[C1].txt
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
/fmw.trayonly
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\wbem\wmiprvse.exe
taskhost.exe $(Arg0)
taskeng.exe {24F8EC4B-6570-49A1-9580-469F7CBE3424}
taskeng.exe {EA834406-F760-4865-AD32-908A9AACB44F}
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\m\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_213_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\AutoKMS.job - C:\Windows\AutoKMS\AutoKMS.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Norton Security Scan for m.job - C:\PROGRA~2\NORTON~2\Engine\431~1.3\Nss.exe /scan-quick /scheduled
=========Mozilla firefox=========
ProfilePath - C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\extensions\
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\searchplugins\
firmy.cz-190921.xml
mapy.cz-190921.xml
seznam.cz-190921.xml
videa.seznam.cz-190921.xml
zbozi.cz-190921.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-03 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12 715016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-03 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-07 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-07 439576]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-07 170264]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-03-07 2821936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlazeServoTool]
C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe [2010-03-06 286720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonQuickMenu]
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2014-03-25 1284680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CDAServer]
C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flvto YouTube Downloader]
C:\Users\m\AppData\Local\Flvto\FlvtoYoutubeDownloader.exe [2015-10-26 524800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\m\AppData\Roaming\ICQM\icq.exe [2015-12-01 29919576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files (x86)\Nero\Tools\InCD\InCD.exe [2009-10-16 1060136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2015-07-11 170280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBHGui]
C:\Program Files (x86)\Nero\Tools\InCD\NBHGui.exe [2009-10-16 1600816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]
C:\Program Files\VDownloader\VDownloader4.exe [2015-10-05 2055168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Firefox Preloader.lnk]
C:\PROGRA~2\FIREFO~1\FIREFO~1.EXE [2005-02-09 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\385C9A~1.150\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Audio Control Panel Autostart.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\MULTI-~1\SOUNDC~2.EXE [2015-09-03 315392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Control Panel.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\USBAUD~1\SOUNDC~1.EXE [2013-08-29 388800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^m^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2015-10-13 246472]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-02-27 291608]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-03-23 186640]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2013-02-19 453736]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-03 7139256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-28 430592]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-18 19:47:33 ----D---- C:\rsit
2016-04-14 03:16:43 ----SHD---- C:\Config.Msi
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-13 10:08:35 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\rpcss.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-13 10:08:25 ----A---- C:\Windows\system32\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-13 10:08:24 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64win.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\winsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srcore.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\smss.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\secur32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rstrui.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\lsass.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kernel32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\conhost.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidapi.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\advapi32.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\adtschema.dll
2016-04-13 10:08:16 ----A---- C:\Windows\system32\win32k.sys
2016-04-13 10:08:16 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-13 10:08:11 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapi.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\invagent.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\generaltel.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\devinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-13 10:08:07 ----A---- C:\Windows\system32\appraiser.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aepic.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aeinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\acmigration.dll
2016-04-13 10:08:04 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samsrv.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samlib.dll
2016-04-13 10:08:01 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-13 10:08:01 ----A---- C:\Windows\system32\tzres.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\inseng.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\iernonce.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-13 10:05:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-13 10:05:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\urlmon.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\occache.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-13 10:05:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iesetup.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iertutil.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-13 10:05:45 ----A---- C:\Windows\system32\vbscript.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\ieui.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\webcheck.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\jscript.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieframe.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\wininet.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\msrating.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9.dll
2016-04-13 10:05:42 ----A---- C:\Windows\system32\mshtml.dll
2016-04-12 11:27:57 ----D---- C:\Users\m\AppData\Roaming\MPC-HC
2016-04-12 11:27:09 ----D---- C:\Program Files\MPC-HC
2016-04-12 10:04:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-04-11 17:00:10 ----D---- C:\Users\m\AppData\Roaming\Samsung
2016-04-11 16:59:58 ----D---- C:\Program Files\Common Files\Common Desktop Agent
2016-04-08 12:07:53 ----D---- C:\Program Files (x86)\Apple Software Update
2016-04-04 09:15:00 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-04-03 22:52:15 ----A---- C:\Windows\system32\aswBoot.exe
2016-04-03 22:50:46 ----D---- C:\Users\m\AppData\Roaming\AVAST Software
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSP.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-04-03 22:50:05 ----A---- C:\Windows\avastSS.scr
2016-04-03 22:49:02 ----D---- C:\Program Files\AVAST Software
2016-04-03 21:00:16 ----D---- C:\Program Files (x86)\PreSonus
2016-04-03 20:54:27 ----D---- C:\ProgramData\PreSonus
2016-04-03 20:54:26 ----D---- C:\Users\m\AppData\Roaming\PreSonus
2016-04-03 20:53:34 ----D---- C:\Program Files\PreSonus
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudioks_x64.sys
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudio_x64.sys
2016-03-29 23:01:37 ----D---- C:\Program Files (x86)\Steinberg
2016-03-29 22:58:26 ----D---- C:\Program Files (x86)\Syncrosoft
2016-03-29 22:58:26 ----A---- C:\Windows\SYSWOW64\SYNSOPOS.exe
2016-03-29 22:58:24 ----A---- C:\Windows\SYSWOW64\SYNSOACC.dll
2016-03-29 22:58:24 ----A---- C:\Windows\system32\SYNSOACC.dll
2016-03-29 22:58:22 ----D---- C:\Program Files\eLicenser
2016-03-27 16:59:27 ----D---- C:\Users\m\AppData\Roaming\Avolites
2016-03-24 12:57:12 ----D---- C:\Program Files (x86)\Avolites
2016-03-24 12:33:07 ----D---- C:\AVOLITES
======List of files/folders modified in the last 1 month======
2016-04-19 08:36:16 ----D---- C:\Windows\Temp
2016-04-19 08:36:16 ----D---- C:\Program Files\trend micro
2016-04-18 21:08:20 ----D---- C:\Windows\System32
2016-04-18 21:08:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-18 21:08:19 ----D---- C:\Windows\inf
2016-04-18 21:01:14 ----HD---- C:\ProgramData
2016-04-18 21:01:14 ----D---- C:\Program Files\Common Files
2016-04-18 21:01:14 ----D---- C:\Program Files (x86)\Common Files
2016-04-18 21:01:13 ----D---- C:\AdwCleaner
2016-04-17 13:05:58 ----D---- C:\Windows\system32\config
2016-04-17 13:05:32 ----D---- C:\Windows\Prefetch
2016-04-15 19:09:22 ----SHD---- C:\System Volume Information
2016-04-15 14:28:30 ----D---- C:\Windows\Panther
2016-04-15 13:36:12 ----HD---- C:\$WINDOWS.~BT
2016-04-14 21:52:37 ----D---- C:\Windows\rescache
2016-04-14 11:45:22 ----D---- C:\Windows\system32\Tasks
2016-04-14 11:45:22 ----D---- C:\Program Files (x86)\Opera
2016-04-14 03:43:47 ----D---- C:\Windows\Microsoft.NET
2016-04-14 03:43:15 ----RSD---- C:\Windows\assembly
2016-04-14 03:37:14 ----D---- C:\Windows\winsxs
2016-04-14 03:36:13 ----D---- C:\Windows
2016-04-14 03:36:00 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-14 03:33:35 ----D---- C:\Windows\SysWOW64
2016-04-14 03:33:34 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-14 03:33:34 ----D---- C:\Windows\system32\drivers
2016-04-14 03:33:34 ----D---- C:\Windows\system32\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\en-US
2016-04-14 03:33:33 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\system32\Boot
2016-04-14 03:33:33 ----D---- C:\Windows\system32\appraiser
2016-04-14 03:33:33 ----D---- C:\Windows\Logs
2016-04-14 03:33:33 ----D---- C:\Windows\AppPatch
2016-04-14 03:33:31 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-14 03:33:31 ----D---- C:\Program Files\Internet Explorer
2016-04-14 03:33:30 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-14 03:33:29 ----D---- C:\Windows\system32\DriverStore
2016-04-14 03:18:10 ----SHD---- C:\Windows\Installer
2016-04-14 03:14:21 ----D---- C:\Windows\system32\MRT
2016-04-14 03:08:39 ----D---- C:\Windows\debug
2016-04-14 03:08:37 ----A---- C:\Windows\system32\MRT.exe
2016-04-14 03:07:43 ----D---- C:\ProgramData\Microsoft Help
2016-04-14 03:01:12 ----D---- C:\Windows\system32\catroot2
2016-04-12 11:34:06 ----D---- C:\Windows\Tasks
2016-04-12 11:34:06 ----D---- C:\Users\m\AppData\Roaming\Yandex
2016-04-12 11:32:22 ----D---- C:\Windows\pss
2016-04-12 11:29:27 ----RD---- C:\Program Files (x86)
2016-04-12 11:29:13 ----D---- C:\Windows\Minidump
2016-04-12 11:27:09 ----D---- C:\Program Files
2016-04-11 17:00:09 ----D---- C:\ProgramData\Samsung
2016-04-11 16:59:54 ----D---- C:\Program Files (x86)\Samsung
2016-04-11 16:56:12 ----D---- C:\Windows\system32\catroot
2016-04-09 11:04:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-04-08 12:08:41 ----D---- C:\ProgramData\CanonIJPLM
2016-04-08 12:08:30 ----D---- C:\Users\m\AppData\Roaming\Apple Computer
2016-04-06 10:18:38 ----N---- C:\Windows\system32\MpSigStub.exe
2016-04-04 09:14:54 ----D---- C:\ProgramData\AVAST Software
2016-04-03 22:27:08 ----D---- C:\ProgramData\AVG
2016-04-03 22:27:08 ----D---- C:\Program Files (x86)\AVG
2016-04-03 22:27:01 ----D---- C:\ProgramData\MFAData
2016-04-03 21:44:54 ----D---- C:\Users\m\AppData\Roaming\Steinberg
2016-04-03 21:40:26 ----D---- C:\Program Files\Steinberg
2016-04-03 21:13:53 ----D---- C:\Users\m\AppData\Roaming\Ableton
2016-04-03 21:13:32 ----D---- C:\ProgramData\Package Cache
2016-04-03 21:13:17 ----HD---- C:\Windows\system32\GroupPolicy
2016-04-03 21:10:32 ----D---- C:\ProgramData\Ableton
2016-04-03 20:53:35 ----D---- C:\Program Files\Common Files\Propellerhead Software
2016-03-31 19:47:52 ----D---- C:\Program Files (x86)\MP3Recorder
2016-03-29 23:01:31 ----D---- C:\ProgramData\eLicenser
2016-03-29 22:58:27 ----D---- C:\Program Files (x86)\eLicenser
2016-03-28 09:33:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-03-27 16:58:51 ----D---- C:\Users\m\AppData\Roaming\Skype
2016-03-25 10:11:51 ----SD---- C:\Windows\SYSWOW64\GWX
2016-03-25 10:11:50 ----SD---- C:\Windows\system32\GWX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-04-03 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-04-03 287016]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-02-27 16152]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-02-20 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-04-04 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-04-03 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-04-03 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-04-03 463744]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-07 283064]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-03-16 498512]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-01-11 26528]
R1 InCDRec;Nero UDF File System Recognizer Driver; C:\Windows\system32\DRIVERS\InCDRec.sys [2009-10-16 22040]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-04-03 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-04-03 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-04-03 165344]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-02-20 3538432]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-11-04 68648]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-11-04 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-09-02 51752]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2012-05-03 81928]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2012-03-07 238384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-28 14741632]
R3 InCDFs;Nero UDF File System Driver; C:\Windows\system32\DRIVERS\InCDFs.sys [2009-10-16 168984]
R3 InCDPass;Nero InCDPass Driver; C:\Windows\system32\DRIVERS\InCDPass.sys [2009-10-16 60952]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-02-27 356120]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-02-27 788760]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2012-01-19 435240]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2015-06-27 507392]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2016-01-05 165504]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-11-13 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrv;SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver.sys []
S3 SoundcraftUSBAudio;SoundcraftUSBAudio; C:\Windows\system32\DRIVERS\SoundcraftUSBAudio_x64.sys [2015-09-03 269312]
S3 SoundcraftUSBAudioks;SoundcraftUSBAudioks; C:\Windows\system32\DRIVERS\SoundcraftUSBAudioks_x64.sys [2015-09-03 50688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-11-13 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2014-11-13 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-10 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 WinUsb;Alpha; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-03 237096]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-03-23 1074448]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-03-02 355920]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 InCDSrv;InCD Helper; C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe [2009-10-16 1420592]
R2 NeroRegInCDSrv;Nero Registry InCD Service; C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe [2009-10-16 53560]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-02-20 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-20 1260320]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09 269504]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-07 276248]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-07-11 644904]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-12 146888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Samsung UPD Service2;Samsung UPD Service2; C:\Windows\System32\SUPDSvc2.exe [2011-12-02 165456]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zoufale pomalý notes prosím o kontrolu.
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Windows\tasks\AutoKMS.job
C:\Windows\AutoKMS
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\PROGRA~1\MCAFEE~1
:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBHGui]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]/64
:services
Bonjour Service
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zoufale pomalý notes prosím o kontrolu.
All processes killed
========== FILES ==========
C:\Windows\tasks\AutoKMS.job moved successfully.
C:\Windows\AutoKMS folder moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder C:\PROGRA~1\MCAFEE~1 not found.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBHGui\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service Bonjour Service stopped successfully!
Service Bonjour Service deleted successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: m
->Temp folder emptied: 66937090 bytes
->Temporary Internet Files folder emptied: 7928146 bytes
->FireFox cache emptied: 371823819 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 3631 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 10556644 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 7858 bytes
Total Files Cleaned = 436,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: m
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 04192016_190022
Files moved on Reboot...
C:\Users\m\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{09C7182B-3D0B-4553-A160-9008AA3372F2}.tmp not found!
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{3DCF354B-CD50-44AA-9252-975B6384AD82}.tmp not found!
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{BCBC1822-7596-4C2A-8434-A9458EE05F58}.tmp not found!
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{DB4EE0AD-708C-42D8-BEF3-245D517947A5}.tmp not found!
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{E364A9F1-C191-4E9F-80D4-58D0D8E649C5}.tmp not found!
File move failed. C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\installer.exe scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\opera_installer_20160404091503.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\opera_installer_20160404091508.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\safezone_installer_20160404203019.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\LMutilps32.log scheduled to be moved on reboot.
File move failed. C:\Windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
========== FILES ==========
C:\Windows\tasks\AutoKMS.job moved successfully.
C:\Windows\AutoKMS folder moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
File/Folder C:\PROGRA~1\MCAFEE~1 not found.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBHGui\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk\ deleted successfully.
========== SERVICES/DRIVERS ==========
Service Bonjour Service stopped successfully!
Service Bonjour Service deleted successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: m
->Temp folder emptied: 66937090 bytes
->Temporary Internet Files folder emptied: 7928146 bytes
->FireFox cache emptied: 371823819 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 3631 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 10556644 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 7858 bytes
Total Files Cleaned = 436,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: m
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 04192016_190022
Files moved on Reboot...
C:\Users\m\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{09C7182B-3D0B-4553-A160-9008AA3372F2}.tmp not found!
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{3DCF354B-CD50-44AA-9252-975B6384AD82}.tmp not found!
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{BCBC1822-7596-4C2A-8434-A9458EE05F58}.tmp not found!
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{DB4EE0AD-708C-42D8-BEF3-245D517947A5}.tmp not found!
File C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word\~WRS{E364A9F1-C191-4E9F-80D4-58D0D8E649C5}.tmp not found!
File move failed. C:\Users\m\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\installer.exe scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\opera_installer_20160404091503.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\opera_installer_20160404091508.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\safezone_installer_20160404203019.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\dsiwmis.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\LMutilps32.log scheduled to be moved on reboot.
File move failed. C:\Windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Re: zoufale pomalý notes prosím o kontrolu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by m at 2016-04-19 19:08:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 605 GB (63%) free of 954 GB
Total RAM: 8010 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:08:39, on 19.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Windows\system32\IRMonitor.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\m.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.samsungsetup.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: InCD Helper (InCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung UPD Service2 - Unknown owner - C:\Windows\System32\SUPDSvc2.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9523 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {099BD5F9-1825-4292-ACE3-FCC81FB7ED2E}
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskeng.exe {52867CCC-9966-46FC-84B5-B8BF9A7C2861}
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\IRMonitor.exe
"C:\Program Files\Software Informer\softinfo.exe" -service
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\04192016_190022.log
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
/fmw.trayonly
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
taskhost.exe $(Arg0)
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Users\m\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_213_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Norton Security Scan for m.job - C:\PROGRA~2\NORTON~2\Engine\431~1.3\Nss.exe /scan-quick /scheduled
=========Mozilla firefox=========
ProfilePath - C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\extensions\
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\searchplugins\
firmy.cz-190921.xml
mapy.cz-190921.xml
seznam.cz-190921.xml
videa.seznam.cz-190921.xml
zbozi.cz-190921.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-03 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12 715016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-03 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-07 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-07 439576]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-07 170264]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-03-07 2821936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlazeServoTool]
C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe [2010-03-06 286720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonQuickMenu]
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2014-03-25 1284680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CDAServer]
C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flvto YouTube Downloader]
C:\Users\m\AppData\Local\Flvto\FlvtoYoutubeDownloader.exe [2015-10-26 524800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\m\AppData\Roaming\ICQM\icq.exe [2015-12-01 29919576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2015-07-11 170280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]
C:\Program Files\VDownloader\VDownloader4.exe [2015-10-05 2055168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Firefox Preloader.lnk]
C:\PROGRA~2\FIREFO~1\FIREFO~1.EXE [2005-02-09 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Audio Control Panel Autostart.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\MULTI-~1\SOUNDC~2.EXE [2015-09-03 315392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Control Panel.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\USBAUD~1\SOUNDC~1.EXE [2013-08-29 388800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^m^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2015-10-13 246472]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-02-27 291608]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-04-14 186640]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2013-02-19 453736]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-03 7139256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-28 430592]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-19 19:00:22 ----D---- C:\_OTM
2016-04-18 19:47:33 ----D---- C:\rsit
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-13 10:08:35 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\rpcss.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-13 10:08:25 ----A---- C:\Windows\system32\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-13 10:08:24 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64win.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\winsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srcore.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\smss.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\secur32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rstrui.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\lsass.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kernel32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\conhost.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidapi.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\advapi32.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\adtschema.dll
2016-04-13 10:08:16 ----A---- C:\Windows\system32\win32k.sys
2016-04-13 10:08:16 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-13 10:08:11 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapi.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\invagent.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\generaltel.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\devinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-13 10:08:07 ----A---- C:\Windows\system32\appraiser.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aepic.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aeinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\acmigration.dll
2016-04-13 10:08:04 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samsrv.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samlib.dll
2016-04-13 10:08:01 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-13 10:08:01 ----A---- C:\Windows\system32\tzres.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\inseng.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\iernonce.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-13 10:05:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-13 10:05:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\urlmon.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\occache.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-13 10:05:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iesetup.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iertutil.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-13 10:05:45 ----A---- C:\Windows\system32\vbscript.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\ieui.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\webcheck.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\jscript.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieframe.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\wininet.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\msrating.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9.dll
2016-04-13 10:05:42 ----A---- C:\Windows\system32\mshtml.dll
2016-04-12 11:27:57 ----D---- C:\Users\m\AppData\Roaming\MPC-HC
2016-04-12 11:27:09 ----D---- C:\Program Files\MPC-HC
2016-04-12 10:04:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-04-11 17:00:10 ----D---- C:\Users\m\AppData\Roaming\Samsung
2016-04-11 16:59:58 ----D---- C:\Program Files\Common Files\Common Desktop Agent
2016-04-08 12:07:53 ----D---- C:\Program Files (x86)\Apple Software Update
2016-04-04 09:15:00 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-04-03 22:52:15 ----A---- C:\Windows\system32\aswBoot.exe
2016-04-03 22:50:46 ----D---- C:\Users\m\AppData\Roaming\AVAST Software
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSP.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-04-03 22:50:05 ----A---- C:\Windows\avastSS.scr
2016-04-03 22:49:02 ----D---- C:\Program Files\AVAST Software
2016-04-03 21:00:16 ----D---- C:\Program Files (x86)\PreSonus
2016-04-03 20:54:27 ----D---- C:\ProgramData\PreSonus
2016-04-03 20:54:26 ----D---- C:\Users\m\AppData\Roaming\PreSonus
2016-04-03 20:53:34 ----D---- C:\Program Files\PreSonus
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudioks_x64.sys
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudio_x64.sys
2016-03-29 23:01:37 ----D---- C:\Program Files (x86)\Steinberg
2016-03-29 22:58:26 ----D---- C:\Program Files (x86)\Syncrosoft
2016-03-29 22:58:26 ----A---- C:\Windows\SYSWOW64\SYNSOPOS.exe
2016-03-29 22:58:24 ----A---- C:\Windows\SYSWOW64\SYNSOACC.dll
2016-03-29 22:58:24 ----A---- C:\Windows\system32\SYNSOACC.dll
2016-03-29 22:58:22 ----D---- C:\Program Files\eLicenser
2016-03-27 16:59:27 ----D---- C:\Users\m\AppData\Roaming\Avolites
2016-03-24 12:57:12 ----D---- C:\Program Files (x86)\Avolites
2016-03-24 12:33:07 ----D---- C:\AVOLITES
======List of files/folders modified in the last 1 month======
2016-04-19 19:08:38 ----D---- C:\Program Files\trend micro
2016-04-19 19:08:28 ----D---- C:\Windows\Prefetch
2016-04-19 19:05:57 ----D---- C:\Windows\Temp
2016-04-19 19:00:23 ----D---- C:\Windows\Tasks
2016-04-19 19:00:23 ----D---- C:\Windows
2016-04-19 18:53:41 ----D---- C:\Users\m\AppData\Roaming\Skype
2016-04-19 13:02:30 ----D---- C:\Windows\winsxs
2016-04-19 13:02:28 ----D---- C:\Windows\System32
2016-04-19 13:02:28 ----D---- C:\Windows\Logs
2016-04-19 13:02:22 ----D---- C:\Windows\SysWOW64
2016-04-19 13:02:21 ----SHD---- C:\System Volume Information
2016-04-19 10:51:36 ----HD---- C:\ProgramData
2016-04-19 09:52:22 ----D---- C:\Windows\inf
2016-04-19 09:52:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-19 09:48:55 ----D---- C:\Windows\system32\config
2016-04-19 09:46:54 ----D---- C:\Windows\Panther
2016-04-19 09:34:39 ----SHD---- C:\Windows\Installer
2016-04-18 21:01:14 ----D---- C:\Program Files\Common Files
2016-04-18 21:01:14 ----D---- C:\Program Files (x86)\Common Files
2016-04-18 21:01:13 ----D---- C:\AdwCleaner
2016-04-15 13:36:12 ----HD---- C:\$WINDOWS.~BT
2016-04-14 21:52:37 ----D---- C:\Windows\rescache
2016-04-14 11:45:22 ----D---- C:\Windows\system32\Tasks
2016-04-14 11:45:22 ----D---- C:\Program Files (x86)\Opera
2016-04-14 03:43:47 ----D---- C:\Windows\Microsoft.NET
2016-04-14 03:43:15 ----RSD---- C:\Windows\assembly
2016-04-14 03:36:00 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-14 03:33:34 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-14 03:33:34 ----D---- C:\Windows\system32\drivers
2016-04-14 03:33:34 ----D---- C:\Windows\system32\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\en-US
2016-04-14 03:33:33 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\system32\Boot
2016-04-14 03:33:33 ----D---- C:\Windows\system32\appraiser
2016-04-14 03:33:33 ----D---- C:\Windows\AppPatch
2016-04-14 03:33:31 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-14 03:33:31 ----D---- C:\Program Files\Internet Explorer
2016-04-14 03:33:30 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-14 03:33:29 ----D---- C:\Windows\system32\DriverStore
2016-04-14 03:14:21 ----D---- C:\Windows\system32\MRT
2016-04-14 03:08:39 ----D---- C:\Windows\debug
2016-04-14 03:08:37 ----A---- C:\Windows\system32\MRT.exe
2016-04-14 03:07:43 ----D---- C:\ProgramData\Microsoft Help
2016-04-14 03:01:12 ----D---- C:\Windows\system32\catroot2
2016-04-12 11:34:06 ----D---- C:\Users\m\AppData\Roaming\Yandex
2016-04-12 11:32:22 ----D---- C:\Windows\pss
2016-04-12 11:29:27 ----RD---- C:\Program Files (x86)
2016-04-12 11:29:13 ----D---- C:\Windows\Minidump
2016-04-12 11:27:09 ----D---- C:\Program Files
2016-04-11 17:00:09 ----D---- C:\ProgramData\Samsung
2016-04-11 16:59:54 ----D---- C:\Program Files (x86)\Samsung
2016-04-11 16:56:12 ----D---- C:\Windows\system32\catroot
2016-04-09 11:04:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-04-08 12:08:41 ----D---- C:\ProgramData\CanonIJPLM
2016-04-08 12:08:30 ----D---- C:\Users\m\AppData\Roaming\Apple Computer
2016-04-06 10:18:38 ----N---- C:\Windows\system32\MpSigStub.exe
2016-04-04 09:14:54 ----D---- C:\ProgramData\AVAST Software
2016-04-03 22:27:08 ----D---- C:\ProgramData\AVG
2016-04-03 22:27:08 ----D---- C:\Program Files (x86)\AVG
2016-04-03 22:27:01 ----D---- C:\ProgramData\MFAData
2016-04-03 21:44:54 ----D---- C:\Users\m\AppData\Roaming\Steinberg
2016-04-03 21:40:26 ----D---- C:\Program Files\Steinberg
2016-04-03 21:13:53 ----D---- C:\Users\m\AppData\Roaming\Ableton
2016-04-03 21:13:32 ----D---- C:\ProgramData\Package Cache
2016-04-03 21:13:17 ----HD---- C:\Windows\system32\GroupPolicy
2016-04-03 21:10:32 ----D---- C:\ProgramData\Ableton
2016-04-03 20:53:35 ----D---- C:\Program Files\Common Files\Propellerhead Software
2016-03-31 19:47:52 ----D---- C:\Program Files (x86)\MP3Recorder
2016-03-29 23:01:31 ----D---- C:\ProgramData\eLicenser
2016-03-29 22:58:27 ----D---- C:\Program Files (x86)\eLicenser
2016-03-28 09:33:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-04-03 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-04-03 287016]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-02-27 16152]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-02-20 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-04-04 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-04-03 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-04-03 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-04-03 463744]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-07 283064]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-03-16 498512]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-01-11 26528]
R1 InCDRec;Nero UDF File System Recognizer Driver; C:\Windows\system32\DRIVERS\InCDRec.sys [2009-10-16 22040]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-04-03 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-04-03 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-04-03 165344]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-02-20 3538432]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-11-04 68648]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-11-04 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-09-02 51752]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2012-05-03 81928]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2012-03-07 238384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-28 14741632]
R3 InCDFs;Nero UDF File System Driver; C:\Windows\system32\DRIVERS\InCDFs.sys [2009-10-16 168984]
R3 InCDPass;Nero InCDPass Driver; C:\Windows\system32\DRIVERS\InCDPass.sys [2009-10-16 60952]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-02-27 356120]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-02-27 788760]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2012-01-19 435240]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2015-06-27 507392]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2016-01-05 165504]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-11-13 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrv;SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver.sys []
S3 SoundcraftUSBAudio;SoundcraftUSBAudio; C:\Windows\system32\DRIVERS\SoundcraftUSBAudio_x64.sys [2015-09-03 269312]
S3 SoundcraftUSBAudioks;SoundcraftUSBAudioks; C:\Windows\system32\DRIVERS\SoundcraftUSBAudioks_x64.sys [2015-09-03 50688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-11-13 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2014-11-13 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-10 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 WinUsb;Alpha; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-03 237096]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-04-14 1074448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-03-02 355920]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 InCDSrv;InCD Helper; C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe [2009-10-16 1420592]
R2 NeroRegInCDSrv;Nero Registry InCD Service; C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe [2009-10-16 53560]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-02-20 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-20 1260320]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09 269504]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-07 276248]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-07-11 644904]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-12 146888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Samsung UPD Service2;Samsung UPD Service2; C:\Windows\System32\SUPDSvc2.exe [2011-12-02 165456]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Run by m at 2016-04-19 19:08:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 605 GB (63%) free of 954 GB
Total RAM: 8010 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:08:39, on 19.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Windows\system32\IRMonitor.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\m.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-437069544-115546471-2938306295-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://www.samsungsetup.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: InCD Helper (InCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung UPD Service2 - Unknown owner - C:\Windows\System32\SUPDSvc2.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9523 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {099BD5F9-1825-4292-ACE3-FCC81FB7ED2E}
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskeng.exe {52867CCC-9966-46FC-84B5-B8BF9A7C2861}
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\IRMonitor.exe
"C:\Program Files\Software Informer\softinfo.exe" -service
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\04192016_190022.log
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
/fmw.trayonly
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
taskhost.exe $(Arg0)
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Users\m\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_213_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Norton Security Scan for m.job - C:\PROGRA~2\NORTON~2\Engine\431~1.3\Nss.exe /scan-quick /scheduled
=========Mozilla firefox=========
ProfilePath - C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon My Image Garden
"Path"=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.213 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\extensions\
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\m\AppData\Roaming\Mozilla\Firefox\Profiles\e2uyydkw.default-1440437105502\searchplugins\
firmy.cz-190921.xml
mapy.cz-190921.xml
seznam.cz-190921.xml
videa.seznam.cz-190921.xml
zbozi.cz-190921.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 209504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-03 901600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12 715016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07 176736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-03 678656]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12 606472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 6133848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07 4439128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-03-07 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-03-07 439576]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-03-07 170264]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-03-07 2821936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlazeServoTool]
C:\Program Files (x86)\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe [2010-03-06 286720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonQuickMenu]
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2014-03-25 1284680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CDAServer]
C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flvto YouTube Downloader]
C:\Users\m\AppData\Local\Flvto\FlvtoYoutubeDownloader.exe [2015-10-26 524800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq]
C:\Users\m\AppData\Roaming\ICQM\icq.exe [2015-12-01 29919576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2015-07-11 170280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VDownloader]
C:\Program Files\VDownloader\VDownloader4.exe [2015-10-05 2055168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Firefox Preloader.lnk]
C:\PROGRA~2\FIREFO~1\FIREFO~1.EXE [2005-02-09 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Audio Control Panel Autostart.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\MULTI-~1\SOUNDC~2.EXE [2015-09-03 315392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Soundcraft USB Control Panel.lnk]
C:\PROGRA~1\HARMAN~1\SOUNDC~1\USBAUD~1\SOUNDC~1.EXE [2013-08-29 388800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^m^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2015-10-13 246472]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-02-27 291608]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [2016-04-14 186640]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2013-02-19 453736]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-04-03 7139256]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-28 430592]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"wave3"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-19 19:00:22 ----D---- C:\_OTM
2016-04-18 19:47:33 ----D---- C:\rsit
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-13 10:08:35 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-13 10:08:35 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\rpcss.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-13 10:08:30 ----A---- C:\Windows\system32\msxml3.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-13 10:08:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-13 10:08:25 ----A---- C:\Windows\system32\ole32.dll
2016-04-13 10:08:25 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-13 10:08:24 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-13 10:08:24 ----A---- C:\Windows\system32\ntdll.dll
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-13 10:08:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64win.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wow64.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\winsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\wdigest.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\sspicli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srcore.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\srclient.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\smss.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\schannel.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\secur32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rstrui.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\lsass.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kernel32.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\kerberos.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-13 10:08:23 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\conhost.exe
2016-04-13 10:08:23 ----A---- C:\Windows\system32\certcli.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\appidapi.dll
2016-04-13 10:08:23 ----A---- C:\Windows\system32\advapi32.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:22 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\credssp.dll
2016-04-13 10:08:22 ----A---- C:\Windows\system32\auditpol.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-13 10:08:22 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 10:08:21 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msobjs.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\msaudite.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-13 10:08:21 ----A---- C:\Windows\system32\adtschema.dll
2016-04-13 10:08:16 ----A---- C:\Windows\system32\win32k.sys
2016-04-13 10:08:16 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-13 10:08:11 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\tbs.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-13 10:08:11 ----A---- C:\Windows\system32\fveapi.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\invagent.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\generaltel.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\devinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-13 10:08:07 ----A---- C:\Windows\system32\appraiser.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aepic.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\aeinv.dll
2016-04-13 10:08:07 ----A---- C:\Windows\system32\acmigration.dll
2016-04-13 10:08:04 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samsrv.dll
2016-04-13 10:08:04 ----A---- C:\Windows\system32\samlib.dll
2016-04-13 10:08:01 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-13 10:08:01 ----A---- C:\Windows\system32\tzres.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-13 10:05:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-13 10:05:50 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\inseng.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\iernonce.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-13 10:05:50 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-13 10:05:49 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-13 10:05:49 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-13 10:05:48 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-13 10:05:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\urlmon.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\occache.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-13 10:05:47 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-13 10:05:47 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iesetup.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\iertutil.dll
2016-04-13 10:05:46 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-13 10:05:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-13 10:05:45 ----A---- C:\Windows\system32\vbscript.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\ieui.dll
2016-04-13 10:05:45 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\webcheck.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\jscript.dll
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-13 10:05:44 ----A---- C:\Windows\system32\ieframe.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\wininet.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\msrating.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-13 10:05:43 ----A---- C:\Windows\system32\jscript9.dll
2016-04-13 10:05:42 ----A---- C:\Windows\system32\mshtml.dll
2016-04-12 11:27:57 ----D---- C:\Users\m\AppData\Roaming\MPC-HC
2016-04-12 11:27:09 ----D---- C:\Program Files\MPC-HC
2016-04-12 10:04:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-04-11 17:00:10 ----D---- C:\Users\m\AppData\Roaming\Samsung
2016-04-11 16:59:58 ----D---- C:\Program Files\Common Files\Common Desktop Agent
2016-04-08 12:07:53 ----D---- C:\Program Files (x86)\Apple Software Update
2016-04-04 09:15:00 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2016-04-03 22:52:15 ----A---- C:\Windows\system32\aswBoot.exe
2016-04-03 22:50:46 ----D---- C:\Users\m\AppData\Roaming\AVAST Software
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswStm.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSP.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2016-04-03 22:50:20 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2016-04-03 22:50:05 ----A---- C:\Windows\avastSS.scr
2016-04-03 22:49:02 ----D---- C:\Program Files\AVAST Software
2016-04-03 21:00:16 ----D---- C:\Program Files (x86)\PreSonus
2016-04-03 20:54:27 ----D---- C:\ProgramData\PreSonus
2016-04-03 20:54:26 ----D---- C:\Users\m\AppData\Roaming\PreSonus
2016-04-03 20:53:34 ----D---- C:\Program Files\PreSonus
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudioks_x64.sys
2016-04-03 11:57:18 ----A---- C:\Windows\system32\drivers\SoundcraftUSBAudio_x64.sys
2016-03-29 23:01:37 ----D---- C:\Program Files (x86)\Steinberg
2016-03-29 22:58:26 ----D---- C:\Program Files (x86)\Syncrosoft
2016-03-29 22:58:26 ----A---- C:\Windows\SYSWOW64\SYNSOPOS.exe
2016-03-29 22:58:24 ----A---- C:\Windows\SYSWOW64\SYNSOACC.dll
2016-03-29 22:58:24 ----A---- C:\Windows\system32\SYNSOACC.dll
2016-03-29 22:58:22 ----D---- C:\Program Files\eLicenser
2016-03-27 16:59:27 ----D---- C:\Users\m\AppData\Roaming\Avolites
2016-03-24 12:57:12 ----D---- C:\Program Files (x86)\Avolites
2016-03-24 12:33:07 ----D---- C:\AVOLITES
======List of files/folders modified in the last 1 month======
2016-04-19 19:08:38 ----D---- C:\Program Files\trend micro
2016-04-19 19:08:28 ----D---- C:\Windows\Prefetch
2016-04-19 19:05:57 ----D---- C:\Windows\Temp
2016-04-19 19:00:23 ----D---- C:\Windows\Tasks
2016-04-19 19:00:23 ----D---- C:\Windows
2016-04-19 18:53:41 ----D---- C:\Users\m\AppData\Roaming\Skype
2016-04-19 13:02:30 ----D---- C:\Windows\winsxs
2016-04-19 13:02:28 ----D---- C:\Windows\System32
2016-04-19 13:02:28 ----D---- C:\Windows\Logs
2016-04-19 13:02:22 ----D---- C:\Windows\SysWOW64
2016-04-19 13:02:21 ----SHD---- C:\System Volume Information
2016-04-19 10:51:36 ----HD---- C:\ProgramData
2016-04-19 09:52:22 ----D---- C:\Windows\inf
2016-04-19 09:52:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-19 09:48:55 ----D---- C:\Windows\system32\config
2016-04-19 09:46:54 ----D---- C:\Windows\Panther
2016-04-19 09:34:39 ----SHD---- C:\Windows\Installer
2016-04-18 21:01:14 ----D---- C:\Program Files\Common Files
2016-04-18 21:01:14 ----D---- C:\Program Files (x86)\Common Files
2016-04-18 21:01:13 ----D---- C:\AdwCleaner
2016-04-15 13:36:12 ----HD---- C:\$WINDOWS.~BT
2016-04-14 21:52:37 ----D---- C:\Windows\rescache
2016-04-14 11:45:22 ----D---- C:\Windows\system32\Tasks
2016-04-14 11:45:22 ----D---- C:\Program Files (x86)\Opera
2016-04-14 03:43:47 ----D---- C:\Windows\Microsoft.NET
2016-04-14 03:43:15 ----RSD---- C:\Windows\assembly
2016-04-14 03:36:00 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-14 03:33:34 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-14 03:33:34 ----D---- C:\Windows\system32\drivers
2016-04-14 03:33:34 ----D---- C:\Windows\system32\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\wbem
2016-04-14 03:33:33 ----D---- C:\Windows\system32\en-US
2016-04-14 03:33:33 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-14 03:33:33 ----D---- C:\Windows\system32\Boot
2016-04-14 03:33:33 ----D---- C:\Windows\system32\appraiser
2016-04-14 03:33:33 ----D---- C:\Windows\AppPatch
2016-04-14 03:33:31 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-14 03:33:31 ----D---- C:\Program Files\Internet Explorer
2016-04-14 03:33:30 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-14 03:33:29 ----D---- C:\Windows\system32\DriverStore
2016-04-14 03:14:21 ----D---- C:\Windows\system32\MRT
2016-04-14 03:08:39 ----D---- C:\Windows\debug
2016-04-14 03:08:37 ----A---- C:\Windows\system32\MRT.exe
2016-04-14 03:07:43 ----D---- C:\ProgramData\Microsoft Help
2016-04-14 03:01:12 ----D---- C:\Windows\system32\catroot2
2016-04-12 11:34:06 ----D---- C:\Users\m\AppData\Roaming\Yandex
2016-04-12 11:32:22 ----D---- C:\Windows\pss
2016-04-12 11:29:27 ----RD---- C:\Program Files (x86)
2016-04-12 11:29:13 ----D---- C:\Windows\Minidump
2016-04-12 11:27:09 ----D---- C:\Program Files
2016-04-11 17:00:09 ----D---- C:\ProgramData\Samsung
2016-04-11 16:59:54 ----D---- C:\Program Files (x86)\Samsung
2016-04-11 16:56:12 ----D---- C:\Windows\system32\catroot
2016-04-09 11:04:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-04-08 12:08:41 ----D---- C:\ProgramData\CanonIJPLM
2016-04-08 12:08:30 ----D---- C:\Users\m\AppData\Roaming\Apple Computer
2016-04-06 10:18:38 ----N---- C:\Windows\system32\MpSigStub.exe
2016-04-04 09:14:54 ----D---- C:\ProgramData\AVAST Software
2016-04-03 22:27:08 ----D---- C:\ProgramData\AVG
2016-04-03 22:27:08 ----D---- C:\Program Files (x86)\AVG
2016-04-03 22:27:01 ----D---- C:\ProgramData\MFAData
2016-04-03 21:44:54 ----D---- C:\Users\m\AppData\Roaming\Steinberg
2016-04-03 21:40:26 ----D---- C:\Program Files\Steinberg
2016-04-03 21:13:53 ----D---- C:\Users\m\AppData\Roaming\Ableton
2016-04-03 21:13:32 ----D---- C:\ProgramData\Package Cache
2016-04-03 21:13:17 ----HD---- C:\Windows\system32\GroupPolicy
2016-04-03 21:10:32 ----D---- C:\ProgramData\Ableton
2016-04-03 20:53:35 ----D---- C:\Program Files\Common Files\Propellerhead Software
2016-03-31 19:47:52 ----D---- C:\Program Files (x86)\MP3Recorder
2016-03-29 23:01:31 ----D---- C:\ProgramData\eLicenser
2016-03-29 22:58:27 ----D---- C:\Program Files (x86)\eLicenser
2016-03-28 09:33:09 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-04-03 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-04-03 287016]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-02-27 16152]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-02-20 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-04-04 37144]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-04-03 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-04-03 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-04-03 463744]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-11-07 283064]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-03-16 498512]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-01-11 26528]
R1 InCDRec;Nero UDF File System Recognizer Driver; C:\Windows\system32\DRIVERS\InCDRec.sys [2009-10-16 22040]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-04-03 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-04-03 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-04-03 165344]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-11-26 11576]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-02-20 3538432]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-11-04 68648]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-11-04 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-09-02 51752]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2012-05-03 81928]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2012-03-07 238384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-28 14741632]
R3 InCDFs;Nero UDF File System Driver; C:\Windows\system32\DRIVERS\InCDFs.sys [2009-10-16 168984]
R3 InCDPass;Nero InCDPass Driver; C:\Windows\system32\DRIVERS\InCDPass.sys [2009-10-16 60952]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-02-27 356120]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-02-27 788760]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2012-01-19 435240]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2015-06-27 507392]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2016-01-05 165504]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-11-13 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrv;SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver.sys []
S3 SoundcraftUSBAudio;SoundcraftUSBAudio; C:\Windows\system32\DRIVERS\SoundcraftUSBAudio_x64.sys [2015-09-03 269312]
S3 SoundcraftUSBAudioks;SoundcraftUSBAudioks; C:\Windows\system32\DRIVERS\SoundcraftUSBAudioks_x64.sys [2015-09-03 50688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-11-13 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2014-11-13 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-10 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 WinUsb;Alpha; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-04-03 237096]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-04-14 1074448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-03-02 355920]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-05-14 140936]
R2 InCDSrv;InCD Helper; C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe [2009-10-16 1420592]
R2 NeroRegInCDSrv;Nero Registry InCD Service; C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe [2009-10-16 53560]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-02-20 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-20 1260320]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09 269504]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-03-07 276248]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-07-11 644904]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-04-12 146888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Samsung UPD Service2;Samsung UPD Service2; C:\Windows\System32\SUPDSvc2.exe [2011-12-02 165456]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zoufale pomalý notes prosím o kontrolu.
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zoufale pomalý notes prosím o kontrolu.
Zdá se to lepší, budu muset resetovat firefox, ten to asi hlavně brzdí.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zoufale pomalý notes prosím o kontrolu.
OK, je to možné. Můžete si ho zazálohovat pomocí MozBackup: http://www.stahuj.centrum.cz/utility_a_ ... mozbackup/ , pak přeinstalovat a nakonec ze zálohy nakopírovat jen záložky a hesla.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?