Logfile of random's system information tool 1.10 (written by random/random)
Run by Daniela at 2014-07-05 16:37:26
Microsoft Windows 8.1
System drive C: has 364 GB (79%) free of 461 GB
Total RAM: 3274 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:37:38, on 5. 7. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\syswow64\wwahost.exe
C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\trend micro\Daniela.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [BtTray] "c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [CLWCSM] "c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\windows\SysWow64\skype4com.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem39.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12824 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Secunia\PSI\PSIA.exe" --start-service
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Secunia\PSI\sua.exe" --start-service
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
atieclxx
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe" /TUStart /pid:2452
taskhostex.exe
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
ClassicStartMenu.exe -startup
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\Windows\System32\skydrive.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\WINDOWS\syswow64\wwahost.exe" -ServerName:App.wwa
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Secunia\PSI\psi_tray.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
taskhost.exe
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3112407768-4066005670-2904608106-100213_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3112407768-4066005670-2904608106-100213 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe14_ Global\UsGthrCtrlFltPipeMssGthrPipe14 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\Daniela\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002Core.job - C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002UA.job - C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20 774144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-03 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2013-10-20 460288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20 627712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-16 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-16 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2013-10-20 386048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20 774144]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-03 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20 627712]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30 2804976]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2014-03-08 1703424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-06-24 21720]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-18 138096]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-06-14 6564120]
"GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-06-05 860488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-02-07 683656]
"BtTray"=c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2013-01-10 379904]
"CLWCSM"=c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [2013-02-20 249096]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-02-01 136488]
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-02-01 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-11-21 111136]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2012-11-21 493088]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-03 3873704]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-10-16 77088]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-10-16 337184]
""= []
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-23 766688]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Secunia PSI Tray.lnk - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\facebookmessenger.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-07-05 16:37:28 ----D---- C:\Program Files\trend micro
2014-07-05 16:37:26 ----D---- C:\rsit
2014-07-05 16:19:16 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-07-05 16:18:19 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-05 16:18:19 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2014-07-05 16:18:19 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-07-05 14:55:11 ----D---- C:\Program Files (x86)\ESET
2014-07-05 14:29:34 ----D---- C:\Program Files (x86)\Advanced Micro Devices, Inc
2014-07-05 14:28:31 ----D---- C:\Program Files\ATI Technologies
2014-07-05 14:27:38 ----D---- C:\Program Files (x86)\ATI Technologies
2014-07-05 14:20:57 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-07-05 14:20:56 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-07-05 14:20:55 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-07-05 14:20:55 ----A---- C:\WINDOWS\system32\authui.dll
2014-07-05 14:20:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-07-05 14:20:52 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-07-05 14:20:50 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-07-05 14:20:50 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-07-05 14:20:49 ----A---- C:\WINDOWS\system32\win32k.sys
2014-07-05 14:20:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-07-05 14:20:47 ----A---- C:\WINDOWS\system32\localspl.dll
2014-07-05 14:20:46 ----A---- C:\WINDOWS\system32\vpnike.dll
2014-07-05 14:20:45 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2014-07-05 14:20:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2014-07-05 14:20:42 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-07-05 14:20:41 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-07-05 14:20:41 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-07-05 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-07-05 14:20:40 ----A---- C:\WINDOWS\system32\framedynos.dll
2014-07-05 14:20:40 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-07-05 14:20:38 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-07-05 14:20:36 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-07-05 14:20:36 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2014-07-05 14:20:36 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-07-05 14:20:35 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2014-07-05 14:20:35 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-07-05 14:20:34 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2014-07-05 14:20:34 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\winbici.dll
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\framedyn.dll
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2014-07-05 14:20:32 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll
2014-07-05 14:20:32 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-07-05 14:20:32 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2014-07-05 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\Robocopy.exe
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-07-05 14:20:29 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2014-07-05 14:20:28 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2014-07-05 14:20:27 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2014-07-05 14:20:23 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-07-05 14:20:23 ----A---- C:\WINDOWS\system32\srms.dat
2014-07-05 14:20:23 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-07-05 14:19:55 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-18 13:49:24 ----SHD---- C:\Config.Msi
2014-06-11 15:36:35 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 15:36:35 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 15:36:33 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 15:36:33 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 15:36:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 15:36:30 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 15:36:30 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 15:36:29 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 15:36:28 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 15:36:28 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 15:36:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 15:36:27 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 15:36:25 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 15:36:24 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 15:36:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 15:36:23 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 15:36:22 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 15:36:22 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 15:36:21 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 15:36:21 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 15:36:20 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 15:36:20 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 15:36:18 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 15:36:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 15:36:17 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 15:36:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 15:36:16 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 15:36:03 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 15:36:02 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 15:36:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 15:36:00 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 15:35:55 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 15:35:55 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 15:35:54 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 15:35:52 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 15:35:50 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 15:35:39 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 15:35:32 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-11 15:35:31 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-11 15:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-11 15:35:29 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-11 15:35:27 ----A---- C:\WINDOWS\system32\twinui.dll
2014-06-11 15:35:26 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-11 15:35:24 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-11 15:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-11 15:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-11 15:35:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-06-11 15:35:21 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-11 15:35:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-11 15:35:18 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-11 15:35:17 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-11 15:35:15 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-11 15:35:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-11 15:35:14 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-11 15:35:13 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-11 15:35:12 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-11 15:35:10 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-11 15:35:10 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-11 15:35:08 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-11 15:35:08 ----A---- C:\WINDOWS\system32\services.exe
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-11 15:35:05 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-11 15:35:04 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-11 15:35:02 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-11 15:34:57 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-11 15:34:57 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-11 15:34:57 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-11 15:34:53 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-11 15:34:52 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-11 15:34:51 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-11 15:34:51 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 15:34:21 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 15:34:21 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 15:34:20 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 15:34:19 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 15:34:19 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 15:34:17 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-11 15:32:46 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-11 15:31:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-11 15:31:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-11 15:31:52 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\SYSWOW64\OVDecode.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\SYSWOW64\OpenVideo.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\OVDecode64.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\OpenVideo64.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\coinst_13.251.9001.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\clinfo.exe
2014-06-10 00:52:36 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atiumd64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atitmm64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atisamu64.dll
2014-06-10 00:52:32 ----A---- C:\WINDOWS\system32\atio6axx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atimuixx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atimpc64.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atig6txx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\atidemgy.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2014-06-10 00:52:26 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2014-06-10 00:52:26 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2014-06-10 00:52:22 ----A---- C:\WINDOWS\system32\amdocl64.dll
2014-06-10 00:52:20 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdave64.dll
======List of files/folders modified in the last 1 month======
2014-07-05 16:37:29 ----D---- C:\WINDOWS\Prefetch
2014-07-05 16:37:28 ----RD---- C:\Program Files
2014-07-05 16:19:17 ----D---- C:\WINDOWS\Temp
2014-07-05 16:19:16 ----D---- C:\WINDOWS\system32\drivers
2014-07-05 16:18:27 ----D---- C:\Users\Daniela\AppData\Roaming\Malwarebytes
2014-07-05 16:18:19 ----RD---- C:\Program Files (x86)
2014-07-05 16:18:19 ----D---- C:\ProgramData\Malwarebytes
2014-07-05 16:18:19 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-07-05 16:16:25 ----A---- C:\WINDOWS\SYSWOW64\LOCALSERVICE.INI
2014-07-05 16:16:17 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2014-07-05 16:09:18 ----D---- C:\WINDOWS\SoftwareDistribution
2014-07-05 16:06:00 ----AD---- C:\ProgramData\Temp
2014-07-05 16:05:04 ----D---- C:\WINDOWS\system32\sru
2014-07-05 16:01:27 ----D---- C:\Users\Daniela\AppData\Roaming\ClassicShell
2014-07-05 15:58:46 ----D---- C:\WINDOWS\Inf
2014-07-05 15:58:45 ----D---- C:\Windows
2014-07-05 15:56:47 ----D---- C:\Program Files\CCleaner
2014-07-05 14:55:14 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-07-05 14:50:46 ----D---- C:\WINDOWS\system32\config
2014-07-05 14:43:57 ----D---- C:\WINDOWS\WinSxS
2014-07-05 14:43:54 ----RD---- C:\WINDOWS\System32
2014-07-05 14:43:54 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-05 14:38:52 ----D---- C:\ProgramData\PDFC
2014-07-05 14:35:46 ----D---- C:\WINDOWS\SysWOW64
2014-07-05 14:29:34 ----SHD---- C:\WINDOWS\Installer
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-07-05 14:29:34 ----D---- C:\WINDOWS\MediaViewer
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\wbem
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\en-US
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\cs-CZ
2014-07-05 14:29:24 ----D---- C:\WINDOWS\Microsoft.NET
2014-07-05 14:29:23 ----D---- C:\WINDOWS\FileManager
2014-07-05 14:29:23 ----D---- C:\WINDOWS\Camera
2014-07-05 14:29:21 ----D---- C:\WINDOWS\system32\DriverStore
2014-07-05 14:28:33 ----D---- C:\ProgramData\AMD
2014-07-05 14:28:19 ----D---- C:\WINDOWS\system32\Tasks
2014-07-05 14:28:16 ----D---- C:\WINDOWS\Tasks
2014-07-05 14:27:44 ----D---- C:\WINDOWS\CbsTemp
2014-07-05 14:27:37 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-05 14:26:47 ----HD---- C:\ProgramData
2014-07-05 14:25:15 ----D---- C:\ProgramData\Package Cache
2014-07-05 14:22:45 ----SHD---- C:\System Volume Information
2014-07-05 14:20:57 ----A---- C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-07-04 18:04:49 ----D---- C:\WINDOWS\AppReadiness
2014-07-04 18:04:47 ----HD---- C:\Program Files\WindowsApps
2014-06-14 21:54:02 ----D---- C:\Program Files\SUPERAntiSpyware
2014-06-14 21:38:58 ----D---- C:\WINDOWS\debug
2014-06-14 21:21:23 ----RD---- C:\WINDOWS\ToastData
2014-06-14 21:21:23 ----D---- C:\WINDOWS\WinStore
2014-06-14 21:21:22 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-14 21:21:22 ----D---- C:\WINDOWS\system32\oobe
2014-06-14 21:21:22 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-14 08:19:12 ----D---- C:\WINDOWS\system32\catroot2
2014-06-13 22:02:45 ----D---- C:\WINDOWS\system32\migration
2014-06-13 22:02:45 ----D---- C:\Program Files\Internet Explorer
2014-06-13 22:02:45 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-13 22:02:13 ----D---- C:\WINDOWS\system32\MRT
2014-06-13 22:00:37 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-13 22:00:30 ----D---- C:\ProgramData\Microsoft Help
2014-06-10 00:52:38 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2014-06-10 00:52:38 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2014-06-10 00:52:38 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2014-06-10 00:52:36 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atieclxx.exe
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\atidxx64.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\aticfx64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\atiadlxx.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-12-01 80552]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-12-01 26280]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-03 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-03 208416]
R0 hpdskflt;@oem39.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2013-03-02 30520]
R0 PinFile;PinFile; C:\WINDOWS\system32\DRIVERS\PinFile.sys [2013-08-22 49856]
R0 SDDisk2K;SDDisk2K; C:\WINDOWS\system32\DRIVERS\SDDisk2K.sys [2013-08-22 228544]
R0 SDDToki;SDDToki; C:\WINDOWS\system32\DRIVERS\SDDToki.sys [2013-08-22 131264]
R1 aswNdisFlt;@oem41.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2014-02-22 440672]
R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-05-03 93568]
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-03 1039096]
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-03 423240]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-03 79184]
R3 Accelerometer;@oem39.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2013-03-02 43320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-06-10 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-06-10 626688]
R3 aswStm;aswStm; \??\C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-03 85328]
R3 AtiHDAudioService;@oem3.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2013-02-14 94208]
R3 BtAudioBusSrv;@oem14.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-12-05 49632]
R3 clwcsm;@oem20.inf,%clwcsm.DeviceDesc%;CyberLink Webcam Sharing Manager 4.2; C:\WINDOWS\system32\DRIVERS\clwcsm.sys [2013-02-19 42944]
R3 HpqKbFiltr;@oem9.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2013-01-29 26504]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2014-05-12 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2014-07-05 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2014-05-12 64216]
R3 netr28x;@oem32.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-02 2483376]
R3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_amd64.sys [2013-12-06 18456]
R3 rtbth;@oem31.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem8.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-02-26 772680]
R3 SPUVCbv;@oem18.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [2013-02-22 1446904]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2014-03-08 551936]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [2013-12-16 14112]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2014-01-18 58536]
S1 aswKbd;aswKbd; \??\C:\WINDOWS\system32\drivers\aswKbd.sys []
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2013-01-23 288328]
S3 RTSPER;Realtek PCIe CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2013-02-01 448072]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2013-01-11 28400]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2013-01-11 32496]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-11 144152]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-06-10 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-23 344064]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-03 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-09-23 500048]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-10-16 681760]
R2 hpsrv;@oem39.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2013-03-02 43320]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-02-07 1135752]
R2 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2013-12-06 1229528]
R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-12-06 662232]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2014-03-08 340480]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2013-12-18 2103096]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2013-01-10 138752]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-08-23 1232056]
S2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-02-06 113704]
S2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2013-01-31 1626872]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-18 116648]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-18 116648]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-09-18 372920]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 57856]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivní kontrola
Zdravim 
Vidim tam MBAM. Nasel neco?
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Vidim tam MBAM. Nasel neco? Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
MBAM nic nenašel.
Log z AdwCleaner:
# AdwCleaner v3.214 - Report created 06/07/2014 at 10:41:18
# Updated 29/06/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Daniela - DW
# Running from : C:\Users\Daniela\Desktop\adwcleaner_3.214.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Program Files (x86)\WinZip Registry Optimizer
File Deleted : C:\WINDOWS\System32\roboot64.exe
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v
[ File : C:\Users\Daniela\AppData\Roaming\Mozilla\Firefox\Profiles\kczutonh.default\prefs.js ]
-\\ Google Chrome v35.0.1916.153
[ File : C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1014 octets] - [06/07/2014 10:37:52]
AdwCleaner[S0].txt - [943 octets] - [06/07/2014 10:41:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1002 octets] ##########
Log z AdwCleaner:
# AdwCleaner v3.214 - Report created 06/07/2014 at 10:41:18
# Updated 29/06/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Daniela - DW
# Running from : C:\Users\Daniela\Desktop\adwcleaner_3.214.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Program Files (x86)\WinZip Registry Optimizer
File Deleted : C:\WINDOWS\System32\roboot64.exe
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v
[ File : C:\Users\Daniela\AppData\Roaming\Mozilla\Firefox\Profiles\kczutonh.default\prefs.js ]
-\\ Google Chrome v35.0.1916.153
[ File : C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1014 octets] - [06/07/2014 10:37:52]
AdwCleaner[S0].txt - [943 octets] - [06/07/2014 10:41:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1002 octets] ##########
Re: Preventivní kontrola
Je s pc nejaky konkretni problem, nebo jde ciste jen o prevenci? Dejte novy log z RSITPokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
Některé programy se pomalu načítaly, už je to lepší.
Log z RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Daniela at 2014-07-06 13:15:15
Microsoft Windows 8.1
System drive C: has 364 GB (79%) free of 461 GB
Total RAM: 3274 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:15:20, on 6. 7. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\syswow64\wwahost.exe
C:\Program Files\trend micro\Daniela.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [BtTray] "c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [CLWCSM] "c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\windows\SysWow64\skype4com.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem39.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13126 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
atieclxx
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
taskhostex.exe
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Secunia\PSI\PSIA.exe" --start-service
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe" /TUStart /pid:2988
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Secunia\PSI\sua.exe" --start-service
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
ClassicStartMenu.exe -startup
C:\Windows\System32\skydrive.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5836.0.553324352\1252599722" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15 --gpu-vendor-id=0x1002 --gpu-device-id=0x9992 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_94/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="5836.1.649137267\557710669" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_94/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="5836.2.455053702\1668068330" /prefetch:673131151
"C:\WINDOWS\syswow64\wwahost.exe" -ServerName:App.wwa
taskhost.exe $(Arg0)
explorer.exe
C:\WINDOWS\system32\svchost.exe -k GPSvcGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\Users\Daniela\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002Core.job - C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002UA.job - C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20 774144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-03 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2013-10-20 460288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20 627712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-06 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-06 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2013-10-20 386048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20 774144]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-03 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20 627712]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30 2804976]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2014-03-08 1703424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-06-24 21720]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-18 138096]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-06-14 6564120]
"GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-06-05 860488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-02-07 683656]
"BtTray"=c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2013-01-10 379904]
"CLWCSM"=c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [2013-02-20 249096]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-02-01 136488]
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-02-01 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-11-21 111136]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2012-11-21 493088]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-03 3873704]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-10-16 77088]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-10-16 337184]
""= []
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-23 766688]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-05-07 256896]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Secunia PSI Tray.lnk - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\facebookmessenger.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-07-06 10:38:51 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-07-06 10:37:45 ----D---- C:\AdwCleaner
2014-07-06 08:38:55 ----D---- C:\ProgramData\ATI
2014-07-06 08:33:00 ----A---- C:\WINDOWS\SYSWOW64\javaws.exe
2014-07-06 08:32:47 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2014-07-06 08:32:47 ----A---- C:\WINDOWS\SYSWOW64\javaw.exe
2014-07-06 08:32:47 ----A---- C:\WINDOWS\SYSWOW64\java.exe
2014-07-06 08:32:24 ----D---- C:\Program Files (x86)\Java
2014-07-05 16:37:28 ----D---- C:\Program Files\trend micro
2014-07-05 16:37:26 ----D---- C:\rsit
2014-07-05 16:19:16 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-07-05 16:18:19 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-05 16:18:19 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2014-07-05 16:18:19 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-07-05 14:29:34 ----D---- C:\Program Files (x86)\Advanced Micro Devices, Inc
2014-07-05 14:28:31 ----D---- C:\Program Files\ATI Technologies
2014-07-05 14:27:38 ----D---- C:\Program Files (x86)\ATI Technologies
2014-07-05 14:20:57 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-07-05 14:20:56 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-07-05 14:20:55 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-07-05 14:20:55 ----A---- C:\WINDOWS\system32\authui.dll
2014-07-05 14:20:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-07-05 14:20:52 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-07-05 14:20:50 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-07-05 14:20:50 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-07-05 14:20:49 ----A---- C:\WINDOWS\system32\win32k.sys
2014-07-05 14:20:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-07-05 14:20:47 ----A---- C:\WINDOWS\system32\localspl.dll
2014-07-05 14:20:46 ----A---- C:\WINDOWS\system32\vpnike.dll
2014-07-05 14:20:45 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2014-07-05 14:20:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2014-07-05 14:20:42 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-07-05 14:20:41 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-07-05 14:20:41 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-07-05 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-07-05 14:20:40 ----A---- C:\WINDOWS\system32\framedynos.dll
2014-07-05 14:20:40 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-07-05 14:20:38 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-07-05 14:20:36 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-07-05 14:20:36 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2014-07-05 14:20:36 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-07-05 14:20:35 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2014-07-05 14:20:35 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-07-05 14:20:34 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2014-07-05 14:20:34 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\winbici.dll
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\framedyn.dll
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2014-07-05 14:20:32 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll
2014-07-05 14:20:32 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-07-05 14:20:32 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2014-07-05 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\Robocopy.exe
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-07-05 14:20:29 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2014-07-05 14:20:28 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2014-07-05 14:20:27 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2014-07-05 14:20:23 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-07-05 14:20:23 ----A---- C:\WINDOWS\system32\srms.dat
2014-07-05 14:20:23 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-07-05 14:19:55 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-11 15:36:35 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 15:36:35 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 15:36:33 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 15:36:33 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 15:36:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 15:36:30 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 15:36:30 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 15:36:29 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 15:36:28 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 15:36:28 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 15:36:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 15:36:27 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 15:36:25 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 15:36:24 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 15:36:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 15:36:23 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 15:36:22 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 15:36:22 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 15:36:21 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 15:36:21 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 15:36:20 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 15:36:20 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 15:36:18 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 15:36:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 15:36:17 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 15:36:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 15:36:16 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 15:36:03 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 15:36:02 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 15:36:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 15:36:00 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 15:35:55 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 15:35:55 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 15:35:54 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 15:35:52 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 15:35:50 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 15:35:39 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 15:35:32 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-11 15:35:31 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-11 15:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-11 15:35:29 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-11 15:35:27 ----A---- C:\WINDOWS\system32\twinui.dll
2014-06-11 15:35:26 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-11 15:35:24 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-11 15:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-11 15:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-11 15:35:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-06-11 15:35:21 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-11 15:35:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-11 15:35:18 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-11 15:35:17 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-11 15:35:15 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-11 15:35:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-11 15:35:14 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-11 15:35:13 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-11 15:35:12 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-11 15:35:10 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-11 15:35:10 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-11 15:35:08 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-11 15:35:08 ----A---- C:\WINDOWS\system32\services.exe
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-11 15:35:05 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-11 15:35:04 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-11 15:35:02 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-11 15:34:57 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-11 15:34:57 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-11 15:34:57 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-11 15:34:53 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-11 15:34:52 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-11 15:34:51 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-11 15:34:51 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 15:34:21 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 15:34:21 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 15:34:20 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 15:34:19 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 15:34:19 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 15:34:17 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-11 15:32:46 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-11 15:31:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-11 15:31:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-11 15:31:52 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\SYSWOW64\OVDecode.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\SYSWOW64\OpenVideo.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\OVDecode64.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\OpenVideo64.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\coinst_13.251.9001.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\clinfo.exe
2014-06-10 00:52:36 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atiumd64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atitmm64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atisamu64.dll
2014-06-10 00:52:32 ----A---- C:\WINDOWS\system32\atio6axx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atimuixx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atimpc64.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atig6txx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\atidemgy.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2014-06-10 00:52:26 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2014-06-10 00:52:26 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2014-06-10 00:52:22 ----A---- C:\WINDOWS\system32\amdocl64.dll
2014-06-10 00:52:20 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdave64.dll
======List of files/folders modified in the last 1 month======
2014-07-06 13:15:16 ----D---- C:\WINDOWS\Prefetch
2014-07-06 13:15:07 ----D---- C:\WINDOWS\Temp
2014-07-06 13:15:04 ----A---- C:\WINDOWS\SYSWOW64\LOCALSERVICE.INI
2014-07-06 13:14:57 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2014-07-06 13:02:00 ----D---- C:\WINDOWS\system32\sru
2014-07-06 12:01:57 ----D---- C:\Users\Daniela\AppData\Roaming\ClassicShell
2014-07-06 11:53:19 ----D---- C:\ProgramData\PDFC
2014-07-06 10:53:13 ----RD---- C:\WINDOWS\System32
2014-07-06 10:53:13 ----D---- C:\WINDOWS\Inf
2014-07-06 10:53:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-06 10:44:35 ----RD---- C:\Program Files (x86)
2014-07-06 10:44:35 ----D---- C:\Windows
2014-07-06 10:41:20 ----HD---- C:\ProgramData
2014-07-06 10:38:51 ----D---- C:\WINDOWS\SysWOW64
2014-07-06 08:33:18 ----D---- C:\ProgramData\Oracle
2014-07-06 08:33:04 ----SHD---- C:\WINDOWS\Installer
2014-07-06 08:33:03 ----D---- C:\Program Files (x86)\Common Files
2014-07-06 08:29:56 ----SHD---- C:\System Volume Information
2014-07-05 16:37:28 ----RD---- C:\Program Files
2014-07-05 16:19:16 ----D---- C:\WINDOWS\system32\drivers
2014-07-05 16:18:27 ----D---- C:\Users\Daniela\AppData\Roaming\Malwarebytes
2014-07-05 16:18:19 ----D---- C:\ProgramData\Malwarebytes
2014-07-05 16:09:18 ----D---- C:\WINDOWS\SoftwareDistribution
2014-07-05 16:06:00 ----AD---- C:\ProgramData\Temp
2014-07-05 15:56:47 ----D---- C:\Program Files\CCleaner
2014-07-05 14:55:14 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-07-05 14:50:46 ----D---- C:\WINDOWS\system32\config
2014-07-05 14:43:57 ----D---- C:\WINDOWS\WinSxS
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-07-05 14:29:34 ----D---- C:\WINDOWS\MediaViewer
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\wbem
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\en-US
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\cs-CZ
2014-07-05 14:29:24 ----D---- C:\WINDOWS\Microsoft.NET
2014-07-05 14:29:23 ----D---- C:\WINDOWS\FileManager
2014-07-05 14:29:23 ----D---- C:\WINDOWS\Camera
2014-07-05 14:29:21 ----D---- C:\WINDOWS\system32\DriverStore
2014-07-05 14:28:33 ----D---- C:\ProgramData\AMD
2014-07-05 14:28:19 ----D---- C:\WINDOWS\system32\Tasks
2014-07-05 14:28:16 ----D---- C:\WINDOWS\Tasks
2014-07-05 14:27:44 ----D---- C:\WINDOWS\CbsTemp
2014-07-05 14:27:37 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-05 14:25:15 ----D---- C:\ProgramData\Package Cache
2014-07-05 14:20:57 ----A---- C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-07-04 18:04:49 ----D---- C:\WINDOWS\AppReadiness
2014-07-04 18:04:47 ----HD---- C:\Program Files\WindowsApps
2014-06-14 21:54:02 ----D---- C:\Program Files\SUPERAntiSpyware
2014-06-14 21:38:58 ----D---- C:\WINDOWS\debug
2014-06-14 21:21:23 ----RD---- C:\WINDOWS\ToastData
2014-06-14 21:21:23 ----D---- C:\WINDOWS\WinStore
2014-06-14 21:21:22 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-14 21:21:22 ----D---- C:\WINDOWS\system32\oobe
2014-06-14 21:21:22 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-14 08:19:12 ----D---- C:\WINDOWS\system32\catroot2
2014-06-13 22:02:45 ----D---- C:\WINDOWS\system32\migration
2014-06-13 22:02:45 ----D---- C:\Program Files\Internet Explorer
2014-06-13 22:02:45 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-13 22:02:13 ----D---- C:\WINDOWS\system32\MRT
2014-06-13 22:00:37 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-13 22:00:30 ----D---- C:\ProgramData\Microsoft Help
2014-06-10 00:52:38 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2014-06-10 00:52:38 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2014-06-10 00:52:38 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2014-06-10 00:52:36 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atieclxx.exe
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\atidxx64.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\aticfx64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\atiadlxx.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-12-01 80552]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-12-01 26280]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-03 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-03 208416]
R0 hpdskflt;@oem39.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2013-03-02 30520]
R0 PinFile;PinFile; C:\WINDOWS\system32\DRIVERS\PinFile.sys [2013-08-22 49856]
R0 SDDisk2K;SDDisk2K; C:\WINDOWS\system32\DRIVERS\SDDisk2K.sys [2013-08-22 228544]
R0 SDDToki;SDDToki; C:\WINDOWS\system32\DRIVERS\SDDToki.sys [2013-08-22 131264]
R1 aswNdisFlt;@oem41.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2014-02-22 440672]
R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-05-03 93568]
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-03 1039096]
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-03 423240]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-03 79184]
R3 Accelerometer;@oem39.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2013-03-02 43320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-06-10 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-06-10 626688]
R3 aswStm;aswStm; \??\C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-03 85328]
R3 AtiHDAudioService;@oem3.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2013-02-14 94208]
R3 BtAudioBusSrv;@oem14.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-12-05 49632]
R3 clwcsm;@oem20.inf,%clwcsm.DeviceDesc%;CyberLink Webcam Sharing Manager 4.2; C:\WINDOWS\system32\DRIVERS\clwcsm.sys [2013-02-19 42944]
R3 HpqKbFiltr;@oem9.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2013-01-29 26504]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2014-05-12 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2014-07-06 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2014-05-12 64216]
R3 netr28x;@oem32.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-02 2483376]
R3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_amd64.sys [2013-12-06 18456]
R3 rtbth;@oem31.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem8.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-02-26 772680]
R3 SPUVCbv;@oem18.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [2013-02-22 1446904]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2014-03-08 551936]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [2013-12-16 14112]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2014-01-18 58536]
S1 aswKbd;aswKbd; \??\C:\WINDOWS\system32\drivers\aswKbd.sys []
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2013-01-23 288328]
S3 RTSPER;Realtek PCIe CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2013-02-01 448072]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2013-01-11 28400]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2013-01-11 32496]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-11 144152]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-06-10 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-23 344064]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-03 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-09-23 500048]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-10-16 681760]
R2 hpsrv;@oem39.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2013-03-02 43320]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-02-07 1135752]
R2 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2013-12-06 1229528]
R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-12-06 662232]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2014-03-08 340480]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2013-12-18 2103096]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2013-01-10 138752]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-08-23 1232056]
S2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-02-06 113704]
S2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2013-01-31 1626872]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-18 116648]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-18 116648]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-09-18 372920]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 57856]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
Log z RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Daniela at 2014-07-06 13:15:15
Microsoft Windows 8.1
System drive C: has 364 GB (79%) free of 461 GB
Total RAM: 3274 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:15:20, on 6. 7. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\syswow64\wwahost.exe
C:\Program Files\trend micro\Daniela.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [BtTray] "c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [CLWCSM] "c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\windows\SysWow64\skype4com.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP HotSpot 1.0 Service (HotSpotSrv) - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem39.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13126 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
atieclxx
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
taskhostex.exe
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Secunia\PSI\PSIA.exe" --start-service
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe" /TUStart /pid:2988
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Secunia\PSI\sua.exe" --start-service
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
ClassicStartMenu.exe -startup
C:\Windows\System32\skydrive.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5836.0.553324352\1252599722" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15 --gpu-vendor-id=0x1002 --gpu-device-id=0x9992 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_94/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="5836.1.649137267\557710669" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_15/UMA-Uniformity-Trial-1-Percent/group_94/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="5836.2.455053702\1668068330" /prefetch:673131151
"C:\WINDOWS\syswow64\wwahost.exe" -ServerName:App.wwa
taskhost.exe $(Arg0)
explorer.exe
C:\WINDOWS\system32\svchost.exe -k GPSvcGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\Users\Daniela\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002Core.job - C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002UA.job - C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20 774144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-03 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2013-10-20 460288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20 627712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-06 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-06 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2013-10-20 386048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20 774144]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-05-03 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20 627712]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-05-03 436600]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-10-30 2804976]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2014-03-08 1703424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-06-24 21720]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Daniela\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-18 138096]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-06-14 6564120]
"GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2014-06-05 860488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2013-02-07 683656]
"BtTray"=c:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2013-01-10 379904]
"CLWCSM"=c:\Program Files (x86)\CyberLink\Webcam Sharing Manager\StreamProvider.exe [2013-02-20 249096]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-02-01 136488]
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-02-01 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-11-21 111136]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2012-11-21 493088]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-05-03 3873704]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-10-16 77088]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2013-10-16 337184]
""= []
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-23 766688]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-05-07 256896]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Secunia PSI Tray.lnk - C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\facebookmessenger.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-07-06 10:38:51 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-07-06 10:37:45 ----D---- C:\AdwCleaner
2014-07-06 08:38:55 ----D---- C:\ProgramData\ATI
2014-07-06 08:33:00 ----A---- C:\WINDOWS\SYSWOW64\javaws.exe
2014-07-06 08:32:47 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2014-07-06 08:32:47 ----A---- C:\WINDOWS\SYSWOW64\javaw.exe
2014-07-06 08:32:47 ----A---- C:\WINDOWS\SYSWOW64\java.exe
2014-07-06 08:32:24 ----D---- C:\Program Files (x86)\Java
2014-07-05 16:37:28 ----D---- C:\Program Files\trend micro
2014-07-05 16:37:26 ----D---- C:\rsit
2014-07-05 16:19:16 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-07-05 16:18:19 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-05 16:18:19 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2014-07-05 16:18:19 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-07-05 14:29:34 ----D---- C:\Program Files (x86)\Advanced Micro Devices, Inc
2014-07-05 14:28:31 ----D---- C:\Program Files\ATI Technologies
2014-07-05 14:27:38 ----D---- C:\Program Files (x86)\ATI Technologies
2014-07-05 14:20:57 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-07-05 14:20:56 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-07-05 14:20:55 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-07-05 14:20:55 ----A---- C:\WINDOWS\system32\authui.dll
2014-07-05 14:20:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-07-05 14:20:52 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-07-05 14:20:50 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-07-05 14:20:50 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-07-05 14:20:49 ----A---- C:\WINDOWS\system32\win32k.sys
2014-07-05 14:20:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-07-05 14:20:47 ----A---- C:\WINDOWS\system32\localspl.dll
2014-07-05 14:20:46 ----A---- C:\WINDOWS\system32\vpnike.dll
2014-07-05 14:20:45 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-07-05 14:20:44 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2014-07-05 14:20:43 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2014-07-05 14:20:42 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2014-07-05 14:20:42 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-07-05 14:20:41 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-07-05 14:20:41 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-07-05 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-07-05 14:20:40 ----A---- C:\WINDOWS\system32\framedynos.dll
2014-07-05 14:20:40 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-07-05 14:20:38 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2014-07-05 14:20:37 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-07-05 14:20:36 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-07-05 14:20:36 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2014-07-05 14:20:36 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-07-05 14:20:35 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2014-07-05 14:20:35 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-07-05 14:20:34 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2014-07-05 14:20:34 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\winbici.dll
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\framedyn.dll
2014-07-05 14:20:33 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2014-07-05 14:20:32 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll
2014-07-05 14:20:32 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-07-05 14:20:32 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2014-07-05 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\Robocopy.exe
2014-07-05 14:20:31 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2014-07-05 14:20:30 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-07-05 14:20:29 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2014-07-05 14:20:28 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2014-07-05 14:20:27 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2014-07-05 14:20:23 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-07-05 14:20:23 ----A---- C:\WINDOWS\system32\srms.dat
2014-07-05 14:20:23 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-07-05 14:19:55 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-11 15:36:35 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 15:36:35 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 15:36:33 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 15:36:33 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 15:36:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 15:36:30 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 15:36:30 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 15:36:29 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 15:36:28 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 15:36:28 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 15:36:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 15:36:27 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 15:36:25 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 15:36:24 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 15:36:23 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 15:36:23 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 15:36:22 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 15:36:22 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 15:36:21 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 15:36:21 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 15:36:20 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 15:36:20 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 15:36:18 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 15:36:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 15:36:17 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 15:36:17 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 15:36:16 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 15:36:03 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 15:36:02 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 15:36:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 15:36:00 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 15:35:55 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 15:35:55 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 15:35:54 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 15:35:52 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 15:35:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 15:35:50 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 15:35:39 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 15:35:32 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-11 15:35:31 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-11 15:35:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-11 15:35:29 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-11 15:35:27 ----A---- C:\WINDOWS\system32\twinui.dll
2014-06-11 15:35:26 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-11 15:35:24 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-11 15:35:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-11 15:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-11 15:35:22 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-06-11 15:35:21 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-11 15:35:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-11 15:35:18 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-11 15:35:17 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-11 15:35:15 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-11 15:35:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-11 15:35:14 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-11 15:35:13 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-11 15:35:12 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-11 15:35:11 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-11 15:35:10 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-11 15:35:10 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-11 15:35:09 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-11 15:35:08 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-11 15:35:08 ----A---- C:\WINDOWS\system32\services.exe
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-06-11 15:35:07 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-11 15:35:06 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-11 15:35:05 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-11 15:35:05 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-11 15:35:04 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-11 15:35:04 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-11 15:35:03 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-11 15:35:02 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-11 15:35:02 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-11 15:35:01 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-11 15:35:00 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-11 15:34:59 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-11 15:34:58 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-11 15:34:57 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-11 15:34:57 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-11 15:34:57 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-11 15:34:56 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-11 15:34:55 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-11 15:34:54 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-11 15:34:53 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-11 15:34:52 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-11 15:34:51 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-11 15:34:51 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-11 15:34:50 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 15:34:22 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 15:34:21 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 15:34:21 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 15:34:20 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 15:34:19 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 15:34:19 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 15:34:18 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 15:34:17 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-11 15:32:46 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-11 15:31:59 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-11 15:31:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-11 15:31:54 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-11 15:31:52 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\SYSWOW64\OVDecode.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\SYSWOW64\OpenVideo.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\OVDecode64.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\OpenVideo64.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\coinst_13.251.9001.dll
2014-06-10 00:52:46 ----A---- C:\WINDOWS\system32\clinfo.exe
2014-06-10 00:52:36 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atiumd64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atitmm64.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\system32\atisamu64.dll
2014-06-10 00:52:32 ----A---- C:\WINDOWS\system32\atio6axx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atimuixx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atimpc64.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atig6txx.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\atidemgy.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2014-06-10 00:52:26 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2014-06-10 00:52:26 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2014-06-10 00:52:22 ----A---- C:\WINDOWS\system32\amdocl64.dll
2014-06-10 00:52:20 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2014-06-10 00:52:18 ----A---- C:\WINDOWS\system32\amdave64.dll
======List of files/folders modified in the last 1 month======
2014-07-06 13:15:16 ----D---- C:\WINDOWS\Prefetch
2014-07-06 13:15:07 ----D---- C:\WINDOWS\Temp
2014-07-06 13:15:04 ----A---- C:\WINDOWS\SYSWOW64\LOCALSERVICE.INI
2014-07-06 13:14:57 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2014-07-06 13:02:00 ----D---- C:\WINDOWS\system32\sru
2014-07-06 12:01:57 ----D---- C:\Users\Daniela\AppData\Roaming\ClassicShell
2014-07-06 11:53:19 ----D---- C:\ProgramData\PDFC
2014-07-06 10:53:13 ----RD---- C:\WINDOWS\System32
2014-07-06 10:53:13 ----D---- C:\WINDOWS\Inf
2014-07-06 10:53:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-07-06 10:44:35 ----RD---- C:\Program Files (x86)
2014-07-06 10:44:35 ----D---- C:\Windows
2014-07-06 10:41:20 ----HD---- C:\ProgramData
2014-07-06 10:38:51 ----D---- C:\WINDOWS\SysWOW64
2014-07-06 08:33:18 ----D---- C:\ProgramData\Oracle
2014-07-06 08:33:04 ----SHD---- C:\WINDOWS\Installer
2014-07-06 08:33:03 ----D---- C:\Program Files (x86)\Common Files
2014-07-06 08:29:56 ----SHD---- C:\System Volume Information
2014-07-05 16:37:28 ----RD---- C:\Program Files
2014-07-05 16:19:16 ----D---- C:\WINDOWS\system32\drivers
2014-07-05 16:18:27 ----D---- C:\Users\Daniela\AppData\Roaming\Malwarebytes
2014-07-05 16:18:19 ----D---- C:\ProgramData\Malwarebytes
2014-07-05 16:09:18 ----D---- C:\WINDOWS\SoftwareDistribution
2014-07-05 16:06:00 ----AD---- C:\ProgramData\Temp
2014-07-05 15:56:47 ----D---- C:\Program Files\CCleaner
2014-07-05 14:55:14 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-07-05 14:50:46 ----D---- C:\WINDOWS\system32\config
2014-07-05 14:43:57 ----D---- C:\WINDOWS\WinSxS
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-07-05 14:29:34 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-07-05 14:29:34 ----D---- C:\WINDOWS\MediaViewer
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\wbem
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\en-US
2014-07-05 14:29:24 ----D---- C:\WINDOWS\system32\cs-CZ
2014-07-05 14:29:24 ----D---- C:\WINDOWS\Microsoft.NET
2014-07-05 14:29:23 ----D---- C:\WINDOWS\FileManager
2014-07-05 14:29:23 ----D---- C:\WINDOWS\Camera
2014-07-05 14:29:21 ----D---- C:\WINDOWS\system32\DriverStore
2014-07-05 14:28:33 ----D---- C:\ProgramData\AMD
2014-07-05 14:28:19 ----D---- C:\WINDOWS\system32\Tasks
2014-07-05 14:28:16 ----D---- C:\WINDOWS\Tasks
2014-07-05 14:27:44 ----D---- C:\WINDOWS\CbsTemp
2014-07-05 14:27:37 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-05 14:25:15 ----D---- C:\ProgramData\Package Cache
2014-07-05 14:20:57 ----A---- C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-07-04 18:04:49 ----D---- C:\WINDOWS\AppReadiness
2014-07-04 18:04:47 ----HD---- C:\Program Files\WindowsApps
2014-06-14 21:54:02 ----D---- C:\Program Files\SUPERAntiSpyware
2014-06-14 21:38:58 ----D---- C:\WINDOWS\debug
2014-06-14 21:21:23 ----RD---- C:\WINDOWS\ToastData
2014-06-14 21:21:23 ----D---- C:\WINDOWS\WinStore
2014-06-14 21:21:22 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-14 21:21:22 ----D---- C:\WINDOWS\system32\oobe
2014-06-14 21:21:22 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-14 08:19:12 ----D---- C:\WINDOWS\system32\catroot2
2014-06-13 22:02:45 ----D---- C:\WINDOWS\system32\migration
2014-06-13 22:02:45 ----D---- C:\Program Files\Internet Explorer
2014-06-13 22:02:45 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-13 22:02:13 ----D---- C:\WINDOWS\system32\MRT
2014-06-13 22:00:37 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-13 22:00:30 ----D---- C:\ProgramData\Microsoft Help
2014-06-10 00:52:38 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2014-06-10 00:52:38 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2014-06-10 00:52:38 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2014-06-10 00:52:36 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2014-06-10 00:52:34 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2014-06-10 00:52:30 ----A---- C:\WINDOWS\system32\atieclxx.exe
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\atidxx64.dll
2014-06-10 00:52:28 ----A---- C:\WINDOWS\system32\aticfx64.dll
2014-06-10 00:52:24 ----A---- C:\WINDOWS\system32\atiadlxx.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-12-01 80552]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-12-01 26280]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-05-03 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-05-03 208416]
R0 hpdskflt;@oem39.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2013-03-02 30520]
R0 PinFile;PinFile; C:\WINDOWS\system32\DRIVERS\PinFile.sys [2013-08-22 49856]
R0 SDDisk2K;SDDisk2K; C:\WINDOWS\system32\DRIVERS\SDDisk2K.sys [2013-08-22 228544]
R0 SDDToki;SDDToki; C:\WINDOWS\system32\DRIVERS\SDDToki.sys [2013-08-22 131264]
R1 aswNdisFlt;@oem41.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2014-02-22 440672]
R1 aswRdr;aswRdr; \??\C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-05-03 93568]
R1 aswSnx;aswSnx; \??\C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-03 1039096]
R1 aswSP;aswSP; \??\C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-03 423240]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2012-06-25 92536]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-20 59648]
R2 aswMonFlt;aswMonFlt; \??\C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-05-03 79184]
R3 Accelerometer;@oem39.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2013-03-02 43320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-06-10 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-06-10 626688]
R3 aswStm;aswStm; \??\C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-03 85328]
R3 AtiHDAudioService;@oem3.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2013-02-14 94208]
R3 BtAudioBusSrv;@oem14.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-12-05 49632]
R3 clwcsm;@oem20.inf,%clwcsm.DeviceDesc%;CyberLink Webcam Sharing Manager 4.2; C:\WINDOWS\system32\DRIVERS\clwcsm.sys [2013-02-19 42944]
R3 HpqKbFiltr;@oem9.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2013-01-29 26504]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2014-05-12 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2014-07-06 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2014-05-12 64216]
R3 netr28x;@oem32.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-02 2483376]
R3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf_amd64.sys [2013-12-06 18456]
R3 rtbth;@oem31.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem8.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-02-26 772680]
R3 SPUVCbv;@oem18.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\WINDOWS\System32\Drivers\SPUVCbv_x64.sys [2013-02-22 1446904]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2014-03-08 551936]
R3 SynTP;@oem21.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [2013-12-16 14112]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2014-01-18 58536]
S1 aswKbd;aswKbd; \??\C:\WINDOWS\system32\drivers\aswKbd.sys []
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [2013-01-23 288328]
S3 RTSPER;Realtek PCIe CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2013-02-01 448072]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2013-01-11 28400]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2013-01-11 32496]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-11 144152]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-06-10 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-23 344064]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-05-03 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-09-23 500048]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2013-10-16 681760]
R2 hpsrv;@oem39.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2013-03-02 43320]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-02-07 1135752]
R2 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [2013-12-06 1229528]
R2 Secunia Update Agent;Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [2013-12-06 662232]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2014-03-08 340480]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2013-12-18 2103096]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2013-01-10 138752]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-08-23 1232056]
S2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-02-06 113704]
S2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2013-01-31 1626872]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-18 116648]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-18 116648]
S3 HotSpotSrv;HP HotSpot 1.0 Service; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [2013-09-18 372920]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 57856]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
Re: Preventivní kontrola
MBAM odinstalujte, nebo zkontrolujte, ze nema zapnute stity. Pozor na pouzivani TuneUp, dokaze to v pc nadelat poradnou paseku.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe a ulozte nejlepe na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]
:services
gupdate
gupdatem
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002Core.job
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=-
"SUPERAntiSpyware"=-
"GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=-
"GrooveMonitor"=-
"QuickTime Task"=-
""=-
"SunJavaUpdateSched"=-
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
Po restartu a přihlášení do Windows NT dlouho načítá, objeví se šedá obrazovka.
Log z OTM:
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Daniela
->Temp folder emptied: 1442809 bytes
->Temporary Internet Files folder emptied: 17442639 bytes
->Java cache emptied: 5168 bytes
->FireFox cache emptied: 2654242 bytes
->Google Chrome cache emptied: 166540165 bytes
->Flash cache emptied: 595 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default.migrated
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 9974 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 19896898 bytes
Total Files Cleaned = 198,00 mb
[EMPTYFLASH]
User: All Users
User: Daniela
->Flash cache emptied: 0 bytes
User: Default
User: Default User
User: Default.migrated
User: Public
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTM Restore Point
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002Core.job moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002UA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SUPERAntiSpyware deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\PDF Complete deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
OTM by OldTimer - Version 3.1.21.0 log created on 07062014_135651
Files moved on Reboot...
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\7WJW74PJ\afr[1].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\7WJW74PJ\afr[2].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\7WJW74PJ\viewtopic[3].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\4TJF1PW3\context[1].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\4TJF1PW3\context[2].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\AntiPhishing\4A72F430-B40C-4D36-A068-CE33ADA5ADF9.dat moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\SuggestedSites.dat moved successfully.
File move failed. C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\counters.dat scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Log z OTM:
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Daniela
->Temp folder emptied: 1442809 bytes
->Temporary Internet Files folder emptied: 17442639 bytes
->Java cache emptied: 5168 bytes
->FireFox cache emptied: 2654242 bytes
->Google Chrome cache emptied: 166540165 bytes
->Flash cache emptied: 595 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default.migrated
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 9974 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 19896898 bytes
Total Files Cleaned = 198,00 mb
[EMPTYFLASH]
User: All Users
User: Daniela
->Flash cache emptied: 0 bytes
User: Default
User: Default User
User: Default.migrated
User: Public
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTM Restore Point
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002Core.job moved successfully.
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-3112407768-4066005670-2904608106-1002UA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SUPERAntiSpyware deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_3DE63956E2201FD427025F5C0956CFCB deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\PDF Complete deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
OTM by OldTimer - Version 3.1.21.0 log created on 07062014_135651
Files moved on Reboot...
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\7WJW74PJ\afr[1].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\7WJW74PJ\afr[2].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\7WJW74PJ\viewtopic[3].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\4TJF1PW3\context[1].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\IE\4TJF1PW3\context[2].htm moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\AntiPhishing\4A72F430-B40C-4D36-A068-CE33ADA5ADF9.dat moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\Low\SuggestedSites.dat moved successfully.
File move failed. C:\Users\Daniela\AppData\Local\Microsoft\Windows\INetCache\counters.dat scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Re: Preventivní kontrola
Napiste mi velikost adresare plochy (C:\Users\Daniela\Desktop) Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) vyosek píše:
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.
Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustteKliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y)Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak je na tom pc.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
Velikost plochy adresáře je 2,88MB.
PC funguje jak má, ale přestaly fungovat aplikace z prostředí metra včetně storu. Po spuštění se aplikace načte, minimalizuje a nespustí se.
PC funguje jak má, ale přestaly fungovat aplikace z prostředí metra včetně storu. Po spuštění se aplikace načte, minimalizuje a nespustí se.
Re: Preventivní kontrola
To metro uz mi leze krkem. Je to k nicemu a jeste to ma porad nejake problemy. Jelikoz to neni zpusobeno cistenim, protoze to by blblo vsem, nevim co to zpusobuje. Takze asi nezbude nic jineho, nez pouzit bod obnovy.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
Obnovení systému nemohu použít, zmizely body obnovení, které tam byly, včetně bodů mnou vytvořených. Co s tím?
Re: Preventivní kontrola
Jak mohly zmizet? 
Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
Log z RogueKiller:
RogueKiller V9.2.0.0 [Jun 23 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Daniela [Práva správce]
Mód : Kontrola -- Datum : 07/09/2014 14:38:22
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C28718F8-48E8-453E-8D7F-358C129EA9F9} | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{C28718F8-48E8-453E-8D7F-358C129EA9F9} | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
¤¤¤ naplánované úlohy : 1 ¤¤¤
[Suspicious.Path] \\{5646813B-82E1-4150-9A23-1CCF11C33CAC} -- C:\WINDOWS\system32\pcalua.exe (-a "C:\Users\Daniela\Desktop\Simpsons SKpreklad.exe" -d C:\Users\Daniela\Desktop) -> NALEZENO
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 2 ¤¤¤
[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 http://www.martau.com
¤¤¤ Antirootkit : 0 (Driver: NENAHRÁNO [0xc000036b]) ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST500LT0 12-9WS142 SATA Disk Device +++++
--- User ---
[MBR] 4ec1d3fd8f44da207a0277f2d59cc791
[BSP] dd075e1ebf64c85ef780eac9e7e69ca9 : Unknown MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK
User = LL2 ... OK
RogueKiller V9.2.0.0 [Jun 23 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spuštěno v : Normální režim
Uživatel : Daniela [Práva správce]
Mód : Kontrola -- Datum : 07/09/2014 14:38:22
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C28718F8-48E8-453E-8D7F-358C129EA9F9} | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{C28718F8-48E8-453E-8D7F-358C129EA9F9} | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> NALEZENO
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> NALEZENO
¤¤¤ naplánované úlohy : 1 ¤¤¤
[Suspicious.Path] \\{5646813B-82E1-4150-9A23-1CCF11C33CAC} -- C:\WINDOWS\system32\pcalua.exe (-a "C:\Users\Daniela\Desktop\Simpsons SKpreklad.exe" -d C:\Users\Daniela\Desktop) -> NALEZENO
¤¤¤ Soubory : 0 ¤¤¤
¤¤¤ Soubor HOSTS : 2 ¤¤¤
[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 localhost
[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 http://www.martau.com
¤¤¤ Antirootkit : 0 (Driver: NENAHRÁNO [0xc000036b]) ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST500LT0 12-9WS142 SATA Disk Device +++++
--- User ---
[MBR] 4ec1d3fd8f44da207a0277f2d59cc791
[BSP] dd075e1ebf64c85ef780eac9e7e69ca9 : Unknown MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x0) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK
User = LL2 ... OK
Re: Preventivní kontrola
Ty IP adresy znate?[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.10.5 192.168.1.1 -> NALEZENO
A toto?[Suspicious.Path] \\{5646813B-82E1-4150-9A23-1CCF11C33CAC} -- C:\WINDOWS\system32\pcalua.exe (-a "C:\Users\Daniela\Desktop\Simpsons SKpreklad.exe" -d C:\Users\Daniela\Desktop) -> NALEZENO
Hosts soubor mate upraveny schvalne?Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
IP adresu neznám, hosts soubor jsem neupravovala. Měla jsem v nainstalovanou hru Simpsons, kterou jsem nedávno odinstalovala.
Přispějete na provoz fóra?