Logfile of random's system information tool 1.10 (written by random/random)
Run by Tic_Tac at 2014-06-28 17:53:43
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 107 GB (44%) free of 244 GB
Total RAM: 7860 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:53:53, on 28.6.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 7\RealTimeProtector.exe
C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
C:\Program Files\trend micro\Tic_Tac.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.7.0_13\bin\ssv.dll
O2 - BHO: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll
O2 - BHO: ShopperProBHO - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.7.0_13\bin\jp2ssv.dll
O3 - Toolbar: PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [WheelMouse] C:\ADVANC~1\wh_exec.exe
O4 - HKLM\..\Run: [mnclidrkSrv] C:\Windows\system32\mnclidrk.vbe
O4 - HKLM\..\Run: [MSStp] C:\Windows\inf\msstp.vbe
O4 - HKLM\..\Run: [mncgrnbSrv] C:\Windows\system32\mncgrnb.vbe
O4 - HKLM\..\Run: [NtVdmSrv] C:\Windows\inf\ntvdm.vbe
O4 - HKLM\..\Run: [IObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Advanced SystemCare 7] "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Tic_Tac\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKCU\..\Run: [Google Update] "C:\Users\Tic_Tac\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: EasyFP.lnk = C:\Program Files (x86)\JDSoft\EasyFP\StartEasyFP.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Architect Helper Service - pdfforge GbR - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GbR - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SecureUpdate (SecureUpdateSvc) - Unknown owner - C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: ShopperPro Update (SPBIUpd) - ShopperPro - C:\Program Files\Common Files\ShopperPro\spbiu.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 10246 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 24221408
\??\C:\Windows\system32\conhost.exe "-893793360-44075513958136335210906579491296449353372998016-1838015954373781370
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
taskeng.exe {E82794CB-4829-4DAD-A43E-FB9463B634BE}
"C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe" /STARTUP
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Windows\System32\igfxpers.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files\Common Files\ShopperPro\spbiu.exe" /service
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\igfxext.exe -Embedding
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /systemstart /autostart
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\IObit\Advanced SystemCare 7\RealTimeProtector.exe" /RunCurUs
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe"
"C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -PID:"3148" -RunMxAddonsMgr -UserName:"
paton@centrum.cz" -AppDataPath:"C:\Users\Tic_Tac\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"C:\Program Files (x86)\Maxthon\Language\cs-cz.ini" /prefetch:87E4E14A
"C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -RunResMgr -MainFrmIpc:"IPC_M_R_00000C4C" -UsersFolder:"C:\Users\Tic_Tac\AppData\Roaming\Maxthon3\Users\" -UserName:"
paton@centrum.cz" -AppDataPath:"C:\Users\Tic_Tac\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"C:\Program Files (x86)\Maxthon\Language\cs-cz.ini" /prefetch:A9C14CE7
"C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -RunCore -CoreType:"webkit-normal-0-sp-00000C4C-2" -MainFrmIpc:"IPC_M_C_00000C4C_0001" -ResMgrIpc:"IPC_R_C_00000C4C_0001" -UserName:"
paton@centrum.cz" -CustomCacheFolder:"%TEMP%\Maxthon3Cache\Temp\Webkit\Cache" -SyEvent:"mxevent_IPC_R_C_00000C4C_0001" -AppDataPath:"C:\Users\Tic_Tac\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"C:\Program Files (x86)\Maxthon\Language\cs-cz.ini" /prefetch:6DC8A9CE
"C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -RunCore -CoreType:"webkit-normal-0-sp-00000C4C-0" -MainFrmIpc:"IPC_M_C_00000C4C_0002" -ResMgrIpc:"IPC_R_C_00000C4C_0002" -UserName:"
paton@centrum.cz" -CustomCacheFolder:"%TEMP%\Maxthon3Cache\Temp\Webkit\Cache" -SyEvent:"mxevent_IPC_R_C_00000C4C_0002" -AppDataPath:"C:\Users\Tic_Tac\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"C:\Program Files (x86)\Maxthon\Language\cs-cz.ini" /prefetch:6DC8A9CE
"C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe" -RunMxDl -IPC_M_D_NAME:"IPC_M_D_00000C4C" -IPC_C_D_NAME:"IPC_C_D_00001180" -IPC_R_D_NAME:"IPC_R_D_00000C4C" -UpConf:"2" -UpTypes:"WyJibXAiLCAianBlZyIsICJqcGciLCAiZ2lmIiwgInBuZyIsICJ3YXYiLCAicm1hIiwgIm1pZGkiLCAibXAzIiwgIndtYSIsICJhYWMiLCAibXBhIiwgImRvYyIsICJkb2N4IiwgInhscyIsICJ4bHN4IiwgInBwdCIsICJwcHR4IiwgInBwcyIsICJwcHN4IiwgInR4dCIsICJwZGYiLCAid3BzIiwgImVwdWIiLCAib2RmIiwgImFwayJd" -SyEvent:"mxevent_IPC_R_D_00000C4C" -MxdlConfigFolder:"C:\Users\Tic_Tac\AppData\Roaming\Maxthon3\Public\Downloader\" -AppDataPath:"C:\Users\Tic_Tac\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"C:\Program Files (x86)\Maxthon\Language\cs-cz.ini" /prefetch:27C674F9
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding
"C:\Users\Tic_Tac\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-1.job - C:\Program Files (x86)\iWebar\iWebar-codedownloader.exe /sTEkAmsp /WYuIIWBSg=task /VsppdiEA='iWebar' /iXjAjuzsR=35510 /yffTBbgpE='000171' /LLJTZYbC='0' /JatUFxD='eyJkYXRhIjp7ImRhdGUiOiJFNEd3c210eWNCYTEsOTI2NjRhYWQtZWZlYS00MzJhLTk1YjktODhjZTc5MTg5NWUzLCIsInVucSI6IjkyNjY0YWFkLWVmZWEtNDMyYS05NWI5LTg4Y2U3OTE4OTVlMyJ9fQ==' /xaveIl=D8F6D535668D436CB9C45E4378E737C2IE /chAFN=3ae4b3da4b9c7282c6b9663999bd29e2 /FQZXUweH=1_34_3_28 /ojOrF=1.34.3.28 /WRAdpNs=1397621891 /EWhmCkV=
http://stats.clientdemocloud.com /kWVPIk=
http://errors.clientdemocloud.com /fjEekCvOd=
http://js.clientdemocloud.com /PPQqwxZND=maxthon /HXSjqL /IttjbOIEV='
http://update.clientdemocloud.com/ie_co ... pdate.json' /WYuIIWBSg='task' /uYGIqcE=''
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-2.job - C:\Program Files (x86)\iWebar\b758eec0-2d77-437d-8ac8-dcd399a3b7db-2.exe /FOMvG /VsppdiEA='iWebar' /iXjAjuzsR=35510 /yffTBbgpE='000171' /LLJTZYbC='0' /JatUFxD='eyJkYXRhIjp7ImRhdGUiOiJFNEd3c210eWNCYTEsOTI2NjRhYWQtZWZlYS00MzJhLTk1YjktODhjZTc5MTg5NWUzLCIsInVucSI6IjkyNjY0YWFkLWVmZWEtNDMyYS05NWI5LTg4Y2U3OTE4OTVlMyJ9fQ==' /xaveIl=D8F6D535668D436CB9C45E4378E737C2IE /chAFN=3ae4b3da4b9c7282c6b9663999bd29e2 /FQZXUweH=1_34_3_28 /WRAdpNs=1397621891 /EWhmCkV=
http://stats.clientdemocloud.com /kWVPIk=
http://errors.clientdemocloud.com /ZXejwcpq=11111111-1111-1111-1111-110311551110 /PPQqwxZND=maxthon /HXSjqL /IttjbOIEV='
http://update.clientdemocloud.com/ie_en ... pdate.json' /WYuIIWBSg='task' /uYGIqcE=''
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-3.job - C:\Program Files (x86)\iWebar\b758eec0-2d77-437d-8ac8-dcd399a3b7db-3.exe /HbjJmMjls=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
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-4.job - C:\Program Files (x86)\iWebar\b758eec0-2d77-437d-8ac8-dcd399a3b7db-4.exe /CBYeRQfO /VsppdiEA='iWebar' /REOUZ='C:\Program Files (x86)\iWebar\35510.xpi' /iXjAjuzsR=35510 /yffTBbgpE='000171' /LLJTZYbC='0' /JatUFxD='eyJkYXRhIjp7ImRhdGUiOiJFNEd3c210eWNCYTEsOTI2NjRhYWQtZWZlYS00MzJhLTk1YjktODhjZTc5MTg5NWUzLCIsInVucSI6IjkyNjY0YWFkLWVmZWEtNDMyYS05NWI5LTg4Y2U3OTE4OTVlMyJ9fQ==' /xaveIl=D8F6D535668D436CB9C45E4378E737C2IE /chAFN=3ae4b3da4b9c7282c6b9663999bd29e2 /FQZXUweH=1_34_3_28 /ojOrF=1.34.3.28 /WRAdpNs=1397621891 /EWhmCkV=
http://stats.clientdemocloud.com /kWVPIk=
http://errors.clientdemocloud.com /SxUmr=300 /jWhVr=
2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com /rOXUiLeS=0.94 /QFwRu=a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510 /bbqduSCVG=
https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /35510.rdf /jjpRE='iWebar' /lxrUUCxwm='iWebar' /PUOHQKO='iWebar' /PPQqwxZND=maxthon /HXSjqL /szOxixWE /zadGgJz /IttjbOIEV='
http://update.clientdemocloud.com/ff_ag ... pdate.json' /WYuIIWBSg='task' /uYGIqcE=''
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-5.job - C:\Program Files (x86)\iWebar\b758eec0-2d77-437d-8ac8-dcd399a3b7db-5.exe /sjfIiu /VsppdiEA='iWebar' /iXjAjuzsR=35510 /yffTBbgpE='000171' /LLJTZYbC='0' /JatUFxD='eyJkYXRhIjp7ImRhdGUiOiJFNEd3c210eWNCYTEsOTI2NjRhYWQtZWZlYS00MzJhLTk1YjktODhjZTc5MTg5NWUzLCIsInVucSI6IjkyNjY0YWFkLWVmZWEtNDMyYS05NWI5LTg4Y2U3OTE4OTVlMyJ9fQ==' /xaveIl=D8F6D535668D436CB9C45E4378E737C2IE /chAFN=3ae4b3da4b9c7282c6b9663999bd29e2 /FQZXUweH=1_34_3_28 /WRAdpNs=1397621891 /EWhmCkV=
http://stats.clientdemocloud.com /kWVPIk=
http://errors.clientdemocloud.com /QNMXWm=
http://ipgeoapi.com/ /yuNWahcA=
http://update.clientdemocloud.com /tARxGcrN=2 /AYZeNTMHZ=
http://logs.clientdemocloud.com /IttjbOIEV='
http://update.clientdemocloud.com/updat ... pdate.json' /WYuIIWBSg='task' /uYGIqcE=''
C:\Windows\tasks\DP1815-codedownloader.job - C:\Program Files (x86)\DP1815\DP1815-codedownloader.exe /reinstallapp /runfrom=task /agentregpath='DP1815' /appid=47220 /srcid='000741' /subid='0' /zdata='0' /bic=D8F6D535668D436CB9C45E4378E737C2IE /verifier=3ae4b3da4b9c7282c6b9663999bd29e2 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1393085233 /statsdomain=
http://stats.srvstatsdata.com /errorsdomain=
http://errors.srvstatsdata.com /codedownloaddomain=
http://app-static.crossrider.com /defbro=ff /allusers /autoupdateulr='
http://update.srvstatsdata.com/ie_code_ ... pdate.json' /runfrom='task' /externallog=''
C:\Windows\tasks\DP1815-enabler.job - C:\Program Files (x86)\DP1815\DP1815-enabler.exe /enablebho /agentregpath='DP1815' /appid=47220 /srcid='000741' /subid='0' /zdata='0' /bic=D8F6D535668D436CB9C45E4378E737C2IE /verifier=3ae4b3da4b9c7282c6b9663999bd29e2 /installerversion=1_34_2_13 /installationtime=1393085233 /statsdomain=
http://stats.srvstatsdata.com /errorsdomain=
http://errors.srvstatsdata.com /bhoguid=11111111-1111-1111-1111-110411721120 /defbro=ff /allusers /autoupdateulr='
http://update.srvstatsdata.com/ie_enabl ... pdate.json' /runfrom='task' /externallog=''
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-1.job - C:\Program Files (x86)\Sense\Sense-codedownloader.exe /sTEkAmsp /WYuIIWBSg=task /VsppdiEA='Sense' /iXjAjuzsR=48292 /yffTBbgpE='000805' /LLJTZYbC='0' /JatUFxD='%%BASE64_2({' /xaveIl=BBAF6ED076BA40DDA02EDA0BCA6D56C0IE /chAFN=fbcb164250122cd31a54d335e75e3c09 /FQZXUweH=1_34_3_28 /ojOrF=1.34.3.28 /WRAdpNs=1397625489 /EWhmCkV=
http://stats.clientdemocloud.com /kWVPIk=
http://errors.clientdemocloud.com /fjEekCvOd=
http://js.clientdemocloud.com /PPQqwxZND=maxthon /HXSjqL /IttjbOIEV='
http://update.clientdemocloud.com/ie_co ... pdate.json' /WYuIIWBSg='task' /uYGIqcE=''
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-2.job - C:\Program Files (x86)\Sense\f5758e2c-ba15-4a45-8d17-109e967c1ec5-2.exe /FOMvG /VsppdiEA='Sense' /iXjAjuzsR=48292 /yffTBbgpE='000805' /LLJTZYbC='0' /JatUFxD='%%BASE64_2({' /xaveIl=BBAF6ED076BA40DDA02EDA0BCA6D56C0IE /chAFN=fbcb164250122cd31a54d335e75e3c09 /FQZXUweH=1_34_3_28 /WRAdpNs=1397625489 /EWhmCkV=
http://stats.clientdemocloud.com /kWVPIk=
http://errors.clientdemocloud.com /ZXejwcpq=11111111-1111-1111-1111-110411821192 /PPQqwxZND=maxthon /HXSjqL /IttjbOIEV='
http://update.clientdemocloud.com/ie_en ... pdate.json' /WYuIIWBSg='task' /uYGIqcE=''
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-3.job - C:\Program Files (x86)\Sense\f5758e2c-ba15-4a45-8d17-109e967c1ec5-3.exe /HbjJmMjls=vHQG3LCoxsohy68S9mdIuDUn1z/7Rqng5aI5gNEr3SMV/oqUnRyH6F86c18KhIDxvlnEgBmsHyU39231t5jrRur6DxlM3Ve8RJNjW6t/FUZ9je1uERBfB4dkm473XX1u5E7mr+01ijsMVuRcqdayWkKhi6c2bVXd8IXKTWw82INA/v/VHiy0jhr/NOCDWSNTVWm9hNRf13jH+x7BeJJtpRkumyws+Jh7orm5aJ6lPMqqMiDnpTw7opCxYtPtdOu1/s2cxke23Ehz9KLekkMHz0tG0biNlUEkklQNuTQJddpXMMVOkI0khNTZnbw2rsKCmCktwvrUJnAsUhTaeXlnhFhMRecDuDG/RmidbnlCfloNuSz1/eJUI+fUMKvDLLxaKRDTQVK9UEYMjVHx0Ljza6gD/uqTRg2RaDZJxJh1JMvOWxlkdaQfsH9+2B9zu3hFwgjXG5lW7Wjdk0283j/4msnSGjYiLYRPq3ZursbHmLpH0J9dxCoTqKa+LYZLUAqIjhjj4hvkrSVZbSz18RbAHaKTmoci9j1zJ5Y8rzyMV0G8+pzJAbQeRFDUj61aZNSgzKdSac6oWJbQ0LSkQqPUd1OUXlUj9So+UKC5NUgRw8moqp67oMvQhuzBqYqtIU4/B8eXJ9yj8ZlTLys36sFClpQEBzF4iCTKyV/M2HyWM5WPGHX7+Rma9me0FpW5O+g0ofCLZkrbmXiYkz5g+r+fNuOd8ENkxvyyIv2EzHN7vyoVzDC1s8QklHHnUfr8BrKXNFNi0IXUeezxNGQfyp6EmlNXa1Hsn9Rbnoy4p3PBpGUh0Oi3e323V3ui4o4DzsbjB/dJJnPHTFaJ6+94h41pNAYVkRkz0McuJ+9RLNwLIg46moxWsRp2nDC30vix+lGxTqBIT7acxljnDn+wFrMWkbLP0a5zCtfSH25WqnQ6do4oJVW6/G/4sdjTWFaoUqhgu3vyX0Y3Kwksj2OiAMQvHXO9vqBNXNFX3G0VWzX0ASjwMX+MxS5rFWXgRkRJPJy6lc7cmKU3zIPO1gc6vbNYh4FrnHVAcAdKd4KFIG+fmrjI7LLwkJUhrNayuni6f3pGJJgkMn5fGZvFUSbcEF3i50i+tsKvN+C4BF9Y0YItu0guFnrczsM0fhe0+fTZZ+gkoro0MN6jiADHNfbDuSPolBnwTLkyyMw5Byh5zjytVJM=
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-4.job - C:\Program Files (x86)\Sense\f5758e2c-ba15-4a45-8d17-109e967c1ec5-4.exe /CBYeRQfO /VsppdiEA='Sense' /REOUZ='C:\Program Files (x86)\Sense\48292.xpi' /iXjAjuzsR=48292 /yffTBbgpE='000805' /LLJTZYbC='0' /JatUFxD='%%BASE64_2({' /xaveIl=BBAF6ED076BA40DDA02EDA0BCA6D56C0IE /chAFN=fbcb164250122cd31a54d335e75e3c09 /FQZXUweH=1_34_3_28 /ojOrF=1.34.3.28 /WRAdpNs=1397625489 /EWhmCkV=
http://stats.clientdemocloud.com /kWVPIk=
http://errors.clientdemocloud.com /SxUmr=300 /jWhVr=
143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com /rOXUiLeS=0.94 /QFwRu=a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292 /bbqduSCVG=
https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /48292.rdf /jjpRE='Sense' /lxrUUCxwm='.' /PUOHQKO='Object Browser' /PPQqwxZND=maxthon /HXSjqL /szOxixWE /zadGgJz /IttjbOIEV='
http://update.clientdemocloud.com/ff_ag ... pdate.json' /WYuIIWBSg='task' /uYGIqcE=''
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-5.job - C:\Program Files (x86)\Sense\f5758e2c-ba15-4a45-8d17-109e967c1ec5-5.exe /sjfIiu /VsppdiEA='Sense' /iXjAjuzsR=48292 /yffTBbgpE='000805' /LLJTZYbC='0' /JatUFxD='%%BASE64_2({' /xaveIl=BBAF6ED076BA40DDA02EDA0BCA6D56C0IE /chAFN=fbcb164250122cd31a54d335e75e3c09 /FQZXUweH=1_34_3_28 /WRAdpNs=1397625489 /EWhmCkV=
http://stats.clientdemocloud.com /kWVPIk=
http://errors.clientdemocloud.com /QNMXWm=
http://ipgeoapi.com/ /yuNWahcA=
http://update.clientdemocloud.com /tARxGcrN=2 /AYZeNTMHZ=
http://logs.clientdemocloud.com /IttjbOIEV='
http://update.clientdemocloud.com/updat ... pdate.json' /WYuIIWBSg='task' /uYGIqcE=''
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1526511684-1356210344-2754600199-1000Core.job - C:\Users\Tic_Tac\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1526511684-1356210344-2754600199-1000UA.job - C:\Users\Tic_Tac\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\Registry Optimizer_DEFAULT.job - C:\Program Files (x86)\WinZip Registry Optimizer\Winzipro.exe -default
C:\Windows\tasks\Registry Optimizer_UPDATES.job - C:\Program Files (x86)\WinZip Registry Optimizer\Winzipro.exe -updatecheck
=========Mozilla firefox=========
ProfilePath - C:\Users\Tic_Tac\AppData\Roaming\Mozilla\Firefox\Profiles\7md78poh.default
prefs.js - "browser.startup.homepage" - "
http://www.centrum.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.125 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.7.0_13\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.7.0_13\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.125 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
C:\Users\Tic_Tac\AppData\Roaming\Mozilla\Firefox\Profiles\7md78poh.default\extensions\
2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com
858a779a-4bec-47f4-ac06-ed86e2daad75@d82626c3-adcb-475b-b77d-9a1e67c4fd2a.com
adremoveext@adremoveext.net
ascsurfingprotection@iobit.com
staged
{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2014-05-19 2471744]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-04-02 551840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
Shopper Pro - C:\ProgramData\ShopperPro\ShopperPro64.dll [2014-04-10 517992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-04-02 209824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-01-09 92232]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.7.0_13\bin\ssv.dll [2013-04-02 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F}]
Ads Removal - C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-06-11 464720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
Shopper Pro - C:\ProgramData\ShopperPro\ShopperPro.dll [2014-04-10 430440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Browser Protection - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL [2014-02-20 669504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.7.0_13\bin\jp2ssv.dll [2013-04-02 170912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{25A3A431-30BB-47C8-AD6A-E1063801134F} - PDF Architect Toolbar - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-01-09 609864]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2013-02-05 324608]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-02-05 860192]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-06-13 13672152]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-06-13 1387376]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-08-25 161304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-08-25 386584]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-08-25 414744]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-02-05 1842472]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
"IntelliType Pro"=c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2012-11-02 1464944]
"IntelliPoint"=c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2012-11-02 2076272]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-06-13 1387376]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Advanced SystemCare 7"=C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2014-04-21 2295584]
"NextLive"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]
"Google Update"=C:\Users\Tic_Tac\AppData\Local\Google\Update\GoogleUpdate.exe [2014-05-24 116648]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2013-02-05 1289296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-08-25 98304]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"WheelMouse"=C:\ADVANC~1\wh_exec.exe [2010-05-26 147456]
"mnclidrkSrv"=C:\Windows\system32\mnclidrk.vbe []
"MSStp"=C:\Windows\inf\msstp.vbe [2014-03-05 1584]
"mncgrnbSrv"=C:\Windows\system32\mncgrnb.vbe []
"NtVdmSrv"=C:\Windows\inf\ntvdm.vbe [2013-06-20 1219]
"IObit Malware Fighter"=C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [2014-05-23 1601856]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
EasyFP.lnk - C:\Program Files (x86)\JDSoft\EasyFP\StartEasyFP.exe
C:\Users\Tic_Tac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-08-25 269824]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-06-28 17:53:43 ----D---- C:\rsit
2014-06-28 17:53:43 ----D---- C:\Program Files\trend micro
2014-06-26 08:04:04 ----A---- C:\Windows\system32\drivers\eve.sys
2014-06-26 08:04:00 ----D---- C:\Program Files\WinPcap
2014-06-26 08:03:52 ----D---- C:\ProgramData\VSO
2014-06-26 08:03:52 ----D---- C:\Program Files (x86)\VSO
2014-06-13 05:17:24 ----A---- C:\Windows\system32\YamahaAE.dll
2014-06-13 05:17:22 ----A---- C:\Windows\system32\WavesGUILib64.dll
2014-06-13 05:17:21 ----A---- C:\Windows\system32\SStudio.dll
2014-06-13 05:17:20 ----A---- C:\Windows\system32\sltech64.dll
2014-06-13 05:17:20 ----A---- C:\Windows\system32\slprp64.dll
2014-06-13 05:17:20 ----A---- C:\Windows\system32\slcnt64.dll
2014-06-13 05:17:20 ----A---- C:\Windows\system32\sl3apo64.dll
2014-06-13 05:17:19 ----A---- C:\Windows\system32\RtPgEx64.dll
2014-06-13 05:17:17 ----A---- C:\Windows\system32\RtkApi64.dll
2014-06-13 05:17:17 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-06-13 05:17:16 ----A---- C:\Windows\system32\RtDataProc64.dll
2014-06-13 05:17:16 ----A---- C:\Windows\system32\RltkAPO64.dll
2014-06-13 05:17:16 ----A---- C:\Windows\system32\RCoRes64.dat
2014-06-13 05:17:16 ----A---- C:\Windows\system32\RCoInstII64.dll
2014-06-13 05:17:16 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-06-13 05:17:15 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-06-13 05:17:15 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-06-13 05:17:14 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2014-06-13 05:17:13 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-06-13 05:17:13 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2014-06-13 05:17:13 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2014-06-13 05:17:12 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll
2014-06-13 05:17:12 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2014-06-13 05:17:12 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2014-06-13 05:17:12 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2014-06-13 05:17:12 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-06-13 05:17:12 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2014-06-13 05:17:12 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2014-06-13 05:17:12 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2014-06-13 05:17:11 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2014-06-13 05:17:10 ----A---- C:\Windows\system32\FMAPO64.dll
2014-06-13 05:17:09 ----A---- C:\Windows\system32\DDPP64A.dll
2014-06-13 05:17:09 ----A---- C:\Windows\system32\DDPO64A.dll
2014-06-13 05:17:08 ----A---- C:\Windows\system32\DDPD64A.dll
2014-06-13 05:17:08 ----A---- C:\Windows\system32\DDPA64.dll
2014-06-13 05:17:07 ----A---- C:\Windows\system32\audioLibVc.dll
2014-06-12 21:40:15 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-06-11 22:38:16 ----A---- C:\Windows\SYSWOW64\usp10.dll
2014-06-11 22:38:16 ----A---- C:\Windows\system32\usp10.dll
2014-06-11 22:38:16 ----A---- C:\Windows\system32\msxml6.dll
2014-06-11 22:38:16 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-06-11 22:38:16 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-06-11 22:38:15 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2014-06-11 22:38:15 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-06-11 22:38:15 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-06-11 22:38:15 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-06-11 22:38:15 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-11 22:38:15 ----A---- C:\Windows\system32\msxml6r.dll
2014-06-11 22:38:15 ----A---- C:\Windows\system32\msxml3r.dll
2014-06-11 22:38:15 ----A---- C:\Windows\system32\msxml3.dll
2014-06-11 22:38:14 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-06-11 22:38:14 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-06-11 22:38:14 ----A---- C:\Windows\system32\rdpcorets.dll
2014-06-11 22:38:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-06-11 22:38:13 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-06-11 22:38:13 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-06-11 22:38:13 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-06-11 22:38:13 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-06-11 22:38:13 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-06-11 22:38:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 22:38:13 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-06-11 22:38:12 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-06-11 22:38:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-06-11 22:38:11 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-06-11 22:38:11 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-06-11 22:38:11 ----A---- C:\Windows\system32\urlmon.dll
2014-06-11 22:38:11 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 22:38:11 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-06-11 22:38:10 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-06-11 22:38:10 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-06-11 22:38:10 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-06-11 22:38:10 ----A---- C:\Windows\system32\msfeeds.dll
2014-06-11 22:38:10 ----A---- C:\Windows\system32\dxtmsft.dll
2014-06-11 22:38:09 ----A---- C:\Windows\system32\iesetup.dll
2014-06-11 22:38:09 ----A---- C:\Windows\system32\iertutil.dll
2014-06-11 22:38:09 ----A---- C:\Windows\system32\ie4uinit.exe
2014-06-11 22:38:08 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-06-11 22:38:08 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-06-11 22:38:08 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-06-11 22:38:08 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-06-11 22:38:08 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-06-11 22:38:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-06-11 22:38:08 ----A---- C:\Windows\system32\jsproxy.dll
2014-06-11 22:38:07 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-06-11 22:38:07 ----A---- C:\Windows\system32\ieui.dll
2014-06-11 22:38:07 ----A---- C:\Windows\system32\iernonce.dll
2014-06-11 22:38:07 ----A---- C:\Windows\system32\dxtrans.dll
2014-06-11 22:38:06 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-06-11 22:38:06 ----A---- C:\Windows\system32\mshtmled.dll
2014-06-11 22:38:06 ----A---- C:\Windows\system32\ieframe.dll
2014-06-11 22:38:05 ----A---- C:\Windows\system32\wininet.dll
2014-06-11 22:38:05 ----A---- C:\Windows\system32\vbscript.dll
2014-06-11 22:38:05 ----A---- C:\Windows\system32\jscript9diag.dll
2014-06-11 22:38:05 ----A---- C:\Windows\system32\jscript9.dll
2014-06-11 22:38:05 ----A---- C:\Windows\system32\ieUnatt.exe
2014-06-11 22:38:05 ----A---- C:\Windows\system32\ieapfltr.dll
2014-06-11 22:38:04 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 22:38:04 ----A---- C:\Windows\system32\msrating.dll
2014-06-11 22:38:03 ----A---- C:\Windows\system32\mshtml.dll
2014-06-11 22:36:46 ----A---- C:\Windows\system32\aepdu.dll
2014-06-11 22:36:46 ----A---- C:\Windows\system32\aeinv.dll
2014-06-02 18:45:56 ----D---- C:\Users\Tic_Tac\AppData\Roaming\Samsung
2014-06-02 18:45:55 ----A---- C:\Windows\SYSWOW64\secman.dll
2014-06-02 18:45:25 ----D---- C:\Program Files (x86)\Samsung
2014-06-02 18:34:19 ----D---- C:\Program Files\DIFX
2014-06-02 18:33:46 ----A---- C:\Windows\system32\WinUSBCoInstaller2.dll
2014-06-02 10:02:38 ----D---- C:\Users\Tic_Tac\AppData\Roaming\Cybertron
2014-05-29 21:50:02 ----D---- C:\Users\Tic_Tac\AppData\Roaming\TightVNC
2014-05-29 21:47:32 ----D---- C:\Users\Tic_Tac\AppData\Roaming\Kerio
2014-05-29 21:46:56 ----D---- C:\Program Files (x86)\My Company Name
======List of files/folders modified in the last 1 month======
2014-06-28 17:53:50 ----D---- C:\Windows\Temp
2014-06-28 17:53:43 ----D---- C:\Program Files
2014-06-28 17:03:02 ----D---- C:\Windows\system32\config
2014-06-28 16:55:33 ----D---- C:\Windows\System32
2014-06-28 16:55:33 ----D---- C:\Windows\inf
2014-06-28 16:55:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-28 16:51:34 ----D---- C:\Users\Tic_Tac\AppData\Roaming\newnext.me
2014-06-28 16:51:19 ----D---- C:\Windows
2014-06-28 06:55:57 ----D---- C:\Windows\system32\catroot2
2014-06-28 04:35:17 ----D---- C:\Users\Tic_Tac\AppData\Roaming\vlc
2014-06-26 08:04:34 ----D---- C:\Windows\SYSWOW64\drivers
2014-06-26 08:04:34 ----D---- C:\Windows\system32\drivers
2014-06-26 08:04:33 ----D---- C:\Windows\system32\catroot
2014-06-26 08:04:32 ----D---- C:\Windows\system32\DriverStore
2014-06-26 08:04:30 ----SHD---- C:\System Volume Information
2014-06-26 08:04:00 ----D---- C:\Windows\SysWOW64
2014-06-26 08:03:52 ----RD---- C:\Program Files (x86)
2014-06-26 08:03:52 ----HD---- C:\ProgramData
2014-06-25 18:57:50 ----D---- C:\ProgramData\ProductData
2014-06-23 16:35:56 ----D---- C:\Windows\system32\NDF
2014-06-18 15:14:01 ----D---- C:\ProgramData\boost_interprocess
2014-06-18 11:56:01 ----SHD---- C:\Windows\Installer
2014-06-18 11:56:01 ----SHD---- C:\Config.Msi
2014-06-17 11:33:32 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-06-13 17:57:29 ----D---- C:\Windows\rescache
2014-06-13 05:18:26 ----D---- C:\Windows\SYSWOW64\RTCOM
2014-06-12 22:12:31 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-12 20:53:09 ----D---- C:\Windows\debug
2014-06-12 03:20:19 ----D---- C:\Windows\winsxs
2014-06-12 03:19:21 ----D---- C:\Windows\SYSWOW64\en-US
2014-06-12 03:19:21 ----D---- C:\Program Files\Internet Explorer
2014-06-12 03:19:20 ----D---- C:\Windows\system32\en-US
2014-06-12 03:19:20 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-12 03:04:16 ----D---- C:\Windows\system32\MRT
2014-06-12 03:03:07 ----A---- C:\Windows\system32\MRT.exe
2014-06-12 03:03:02 ----D---- C:\ProgramData\Microsoft Help
2014-06-12 03:01:10 ----SD---- C:\Windows\system32\CompatTel
2014-06-11 22:35:55 ----D---- C:\Windows\Logs
2014-06-09 18:20:24 ----D---- C:\Windows\system32\Tasks
2014-06-05 18:10:45 ----SHD---- C:\$Recycle.Bin
2014-06-05 17:52:18 ----D---- C:\FFOutput
2014-06-02 18:45:54 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-12-01 652344]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-12-01 28216]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2013-12-24 21184]
R1 Eve;EVE Protocol Driver; C:\Windows\system32\DRIVERS\eve.sys [2014-01-23 41304]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R1 wStLibG64;wStLibG64; C:\Windows\system32\drivers\wStLibG64.sys [2014-04-18 61112]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-07-16 35344]
R2 PfFilter;PfFilter; \??\C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2013-04-03 39504]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-08-26 6856192]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-08-25 264192]
R3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2014-01-21 74840]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-05-15 94720]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2014-02-18 9082576]
R3 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-03-23 23048]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2014-01-21 158976]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-06-13 3962840]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2010-08-25 10331840]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2014-03-19 128200]
R3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2013-11-19 34848]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-05-15 34544]
R3 SPBIUpdd;ShopperPro UpdateD; \??\C:\Program Files\Common Files\ShopperPro\spbiw.sys [2014-04-10 41856]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-02-05 292912]
R3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2013-11-19 23016]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 androidusb;ADB Interface Driver; C:\Windows\System32\Drivers\androidusb.sys [2010-04-29 32768]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2013-02-05 53800]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 FILEPRO;FILEPRO; \??\C:\Program Files (x86)\JDSoft\EasyFP\FILEPRO.SYS [2002-01-06 22003]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-08-25 10331840]
S3 kvnet;Kerio Virtual Network Adapter; C:\Windows\system32\DRIVERS\kvnet.sys [2014-05-15 30208]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2012-11-02 50856]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [2014-01-14 881952]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-08-25 203264]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2013-02-05 325200]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-05 865824]
R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2014-05-15 342336]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2012-04-05 255376]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-01-09 1324104]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-01-09 795208]
R2 SPBIUpd;ShopperPro Update; C:\Program Files\Common Files\ShopperPro\spbiu.exe [2014-04-10 2346880]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-04-25 5024576]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-24 116648]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-05-04 2152736]
S2 SecureUpdateSvc;SecureUpdate; C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [2013-08-15 2298704]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-17 262320]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-24 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-05-30 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-06-12 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-02-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Zrejme mate v PC nejakou skodnou