vir z Facebooku se mi nejspíš stáhl do PC, prosím o pomoc
Napsal: 02 lis 2014 15:33
Dobrý den, kamarád chtěl na mým notebooku hrát 1.11. nějaké hry a stáhl do PC asi nějaký vir,....snažím se odinstalovat YDownloader ale nějak to blbne, a antivir avast hlásí, že to je podezřelý program..... Nejde to odinstalovat, podobně i GE Force, která taky byla nainstalovaná 1.11. .... Počítač poslední dobou nějak blbne, je nějaký zpomalený, mám podezření že jsem si nechtěně jsem něco natáhl i přes Facebook. Tam si mě během jednoho dne přidalo 150 neznámých přátel z Číny, když jsem si to googlil tak jde o nějaký facebook friendship request virus nebo něco takového.
Nemůžu se toho zbavit, poradíte mi?
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pavel at 2014-11-02 14:50:27
Microsoft Windows 8.1
System drive C: has 492 MB (0%) free of 105 GB
Total RAM: 4003 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:50:52, on 2. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Users\Pavel\AppData\Roaming\PYAVA.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\Sony\VAIO Control Center\VAIO Clip.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\WINDOWS\SysWOW64\DllHost.exe
C:\Program Files (x86)\YTDownloader\YTDUninstall.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Pavel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sony13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sony13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ATLauncher] "C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe" /createshortcuts:1
O4 - HKLM\..\Run: [ATUninstallIcon] "C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe" /createuninstallentry:1
O4 - HKLM\..\Run: [Intel AppUp(R) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [YTDownloader] "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
O4 - HKCU\..\Run: [T-Mobile CManager] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [BackgroundSwitcher] "C:\Program Files (x86)\Background Switcher\BackgroundSwitcher.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Pavel\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [YTDownloader] "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O4 - Global Startup: Canon LBP2900 Status Window.lnk = C:\Windows\System32\spool\drivers\x64\3\CNAB4LAD.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.22.0.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{97BFE53B-05E6-4621-83DA-69B61D4E5172}: NameServer = 93.153.117.1 93.153.117.33
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: BrcmSetSecurity - Intel - C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service (ESRV_SVC) - Intel Corporation - C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee OOBE Service2 (McOobeSv2) - Unknown owner - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NetworkSupport - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Intel(R) System Behavior Tracker Collector Service (SampleCollector) - Intel Corporation - C:\Program Files\Sony\VAIO Care\VCPerfService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: VAIO Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O23 - Service: VAIO Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
O23 - Service: VAIO Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service (USER_ESRV_SVC) - Intel Corporation - C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VCService - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update\vuagent.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 14314 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
C:\WINDOWS\system32\WLANExt.exe 361489369824
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
/QuitInfo:00000000000006E0;000000000000021C;
/loadhooks /Parent:00000000000008c8
C:\WINDOWS\System32\spoolsv.exe
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskeng.exe {B9E75BF9-5EFE-493C-B222-0A0584470172}
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskeng.exe {569FF3CC-E46F-483A-8AC4-2197CC057166}
C:\Users\Pavel\AppData\Roaming\PYAVA.exe /infocmdline=LJnY/pjT0AnWkcM41iWedA3asA8PQRygd8fdLwYD3SxOss048LguwCgVsbzdNg34ZJehBGKaQFn1I1yjZUErHKdDaE60dV5/8W70sLdfBk0hQIpozx+AIdSinjc51QZ6gzSFcPjwfv6K1OnwiA/Xr7OnHtH9Dc1e701222jbRViYmX4rTklCxr2k2kkoobBQosTq0/I0QwXHHy9bO34dulhszNOXyGna2K1smu/x8s1oLl1G73GhTo6XbVzrAagxpzVzhtipwyZDZj0nzl5Qej9cT7V6lhOvWGljFLOFkjbmNX8xKRBZ0nxAdxpv8aXwDj0YMSm8Jty+IOzKeVz84YVTbRbbgds4rowuPR9e51y+YYVCyKQyGrgA8+FL1KGjMPNQlvBiUWwQ/jlChEJ59grscqRaBDyHp+qcNRv9q4twYK7P38ZMPFOq/0rXiDA0Hy2kW6D3Zm5dYnbOubRUKf8JDiB3bFxBzcEXg3kXuxxlnGsYRFNo+jYhkwYf/3kb
"C:\Program Files (x86)\Ge-Force\5a0a50d3-4cb9-42c1-a7da-ec6218344242-11.exe" /rawdata=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
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {be4b444a-0a64-4183-a40f59cfb04c4e6b}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Ge-Force\5a0a50d3-4cb9-42c1-a7da-ec6218344242-7.exe" /rawdata=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
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
"C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe"
C:\WINDOWS\SysWOW64\DllHost.exe /Processid:{CB45D4CA-8A34-4EF1-9957-6134E5270E83}
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe"
C:\WINDOWS\SysWOW64\svchost.exe -k MbnExt
"C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe" -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d78e03cb-0f26-4970-accc-e769c339dc5b -SystemEventPortName:HostProcess-c6b7977e-006a-474c-ad86-c50b6b11f1d0 -IoCancelEventPortName:HostProcess-1af1c72c-a4d3-44e4-86bb-516527c78dda -NonStateChangingEventPortName:HostProcess-126283eb-37a0-4d78-9098-9ecb53a32643 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3405c785-45fe-48f1-8cd5-93517742a94c -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SONYAPO
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Background Switcher\BackgroundSwitcher.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.EXE"
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
C:\WINDOWS\system32\CNAB4RPD.EXE
"C:\Program Files\Rainmeter\Rainmeter.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Program Files (x86)\Sony\VAIO Control Center\VAIO Clip.exe"
"" "--start" "--register_port" "--address" "127.0.0.1" "--port" "49266" "--pause_on_user_switching" "--depend_on_service" "SampleCollector" "--depend_on_service_start_state_not" "disabled" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Sony\VAIO Care\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=no output_folder='C:\ProgramData\Sony Corporation\VAIO Care\inteldata\userlogs' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Sony\VAIO Care\ESRV\sony_foreground_window_input.dll' "
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe" /Stationary
"C:\Program Files\Sony\VAIO Update\vuagent.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe" "--AUTO_START" "--start" "--address" "127.0.0.1" "--port" "49265" "--depend_on_service" "SampleCollector" "--depend_on_service_start_state_not" "disabled" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Sony\VAIO Care\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=w output_folder='C:\ProgramData\Sony Corporation\VAIO Care\inteldata' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Sony\VAIO Care\ESRV\sony_acpi_battery_input.dll' il='C:\Program Files\Sony\VAIO Care\ESRV\sony_sema_thermal_input.dll' il='C:\Program Files\Sony\VAIO Care\ESRV\sony_wifi_input.dll' "
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Sony\VAIO Care\VCPerfService.exe" "/service" "/sstates" "/sampleinterval=10000" "/procinterval=5" "/dllinterval=120" "/counter=\Processor(_Total)\% Processor Time:1" "/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1" "/counter=\Network Interface(*)\Bytes Total/sec:1" "/expandcounter=\Processor Information(*)\Processor Frequency:1" "" "/expandcounter=\Processor(*)\% Idle Time:1" "/expandcounter=\Processor(*)\% C1 Time:1" "/expandcounter=\Processor(*)\% C2 Time:1" "/expandcounter=\Processor(*)\%C3 Time:1" "/expandcounter=\Processor(*)\% Processor Time:1" "/directory=C:\ProgramData\Sony Corporation\VAIO Care\inteldata"
C:\Program Files\Sony\VAIO Care/listener.exe /silent /slot=0
C:\WINDOWS\SysWOW64\DllHost.exe /Processid:{FCC74B77-EC3E-4DD8-A80B-008A702075A9}
"C:\Program Files (x86)\YTDownloader\YTDUninstall.exe"
"C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe" -System
C:\WINDOWS\system32\DllHost.exe /Processid:{B32DAC50-97B2-4BF7-A8DB-418294621529}
"C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe" -User
"C:\Program Files\Sony\VAIO Care\VCSystemTray.exe" -versionsave -reminder -autoupdate
"C:\Program Files\Sony\VAIO Care\VCService.exe"
"C:\Program Files\Sony\VAIO Care\VCAgent.exe"
"C:\WINDOWS\system32\rundll32.exe" "c:\program files (x86)\t-mobile\web'n'walk manager\mbnext.dll",HuaweiNdisConnect HUAWEI Mobile Connect - Network Adapter
internet.t-mobile.cz
0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1540.0.1766485701\1264280325" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,16 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3304 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="DomRel-Enable/disable/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/PP_Ethersuggest_A4_Stable_R8/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_80/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="1540.1.679279127\49557266" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/PP_Ethersuggest_A4_Stable_R8/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_80/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="1540.6.1174550736\2116082920" /prefetch:673131151
wmiadap.exe /R /T
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/PP_Ethersuggest_A4_Stable_R8/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_80/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="1540.7.350879202\272139576" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Users\Pavel\Downloads\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\WINDOWS\tasks\5a0a50d3-4cb9-42c1-a7da-ec6218344242-4.job - C:\Program Files (x86)\Ge-Force\5a0a50d3-4cb9-42c1-a7da-ec6218344242-4.exe /rawdata=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
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-940705288-3414804496-2694118918-1001Core.job - C:\Users\Pavel\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-940705288-3414804496-2694118918-1001UA.job - C:\Users\Pavel\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\PYAVA.job - C:\Users\Pavel\AppData\Roaming\PYAVA.exe /infocmdline=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
=========Mozilla firefox=========
ProfilePath - C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\Profiles\s1hde9vu.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.20]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin]
"Description"=McAfee Mss Plugin
"Path"=C:\Program Files\Sony\MSS\3.8.141\npMcAfeeMss.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-06-24 551840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-27 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-24 209824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-01-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-27 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-01-25 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-07 1307720]
"AutoKMS"=C:\Windows\AutoKMS.exe [2013-10-29 615936]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-09-16 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-09-16 771032]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-09-16 769496]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-10-09 7818040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile CManager"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2013-10-31 2166552]
"BackgroundSwitcher"=C:\Program Files (x86)\Background Switcher\BackgroundSwitcher.exe [2013-05-20 120424]
"AdobeBridge"= []
"Facebook Update"=C:\Users\Pavel\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-10-10 138096]
"YTDownloader"=C:\Program Files (x86)\YTDownloader\YTDownloader.exe /boot []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PMBVolumeWatcher"=C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-02-06 740376]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"ATLauncher"=C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe /createshortcuts:1 []
"ATUninstallIcon"=C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe /createuninstallentry:1 []
"Intel AppUp(R) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2013-02-19 156000]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-27 4085896]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2013-10-25 73832]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"YTDownloader"=C:\Program Files (x86)\YTDownloader\YTDownloader.exe /boot []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Canon LBP2900 Status Window.lnk - C:\Windows\System32\spool\drivers\x64\3\CNAB4LAD.EXE
C:\Users\Pavel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Rainmeter.lnk - C:\Program Files\Rainmeter\Rainmeter.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-09-16 623104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-02 14:50:27 ----D---- C:\rsit
2014-11-02 14:50:27 ----D---- C:\Program Files\trend micro
2014-11-01 20:35:55 ----A---- C:\Users\Pavel\AppData\Roaming\PYAVA.exe
2014-11-01 20:35:27 ----D---- C:\Program Files (x86)\Ge-Force
2014-11-01 20:34:25 ----D---- C:\Program Files (x86)\YTDownloader
2014-10-30 16:15:59 ----D---- C:\Users\Pavel\AppData\Roaming\Racket
2014-10-30 16:11:35 ----D---- C:\Program Files\Microsoft SQL Server
2014-10-30 15:51:08 ----D---- C:\Program Files\Racket
2014-10-22 17:23:51 ----D---- C:\Users\Pavel\AppData\Roaming\Hamachi
2014-10-22 17:23:36 ----A---- C:\WINDOWS\system32\drivers\hamachi.sys
2014-10-22 17:23:35 ----D---- C:\Program Files (x86)\Hamachi
2014-10-19 12:28:45 ----D---- C:\Users\Pavel\AppData\Roaming\uTorrent
2014-10-16 18:07:10 ----A---- C:\WINDOWS\system32\win32k.sys
2014-10-16 18:06:59 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-10-16 18:06:59 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-10-16 18:06:57 ----A---- C:\WINDOWS\system32\winbici.dll
2014-10-16 18:02:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-10-16 18:02:29 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-10-16 18:02:28 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wups2.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wups.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-10-16 18:02:22 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-10-16 18:02:20 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-10-16 18:02:03 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-10-16 18:02:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-10-16 18:01:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-10-16 18:01:55 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-10-16 18:01:54 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-10-16 18:01:53 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-10-16 18:01:53 ----A---- C:\WINDOWS\system32\wininet.dll
2014-10-16 18:01:52 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-10-16 18:01:52 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-10-16 18:01:52 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-10-16 18:01:52 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-10-16 18:01:51 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-10-16 18:01:51 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-10-16 18:01:50 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-10-16 18:01:50 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-10-16 18:01:50 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-10-16 18:01:26 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-10-16 18:01:26 ----A---- C:\WINDOWS\system32\packager.dll
2014-10-16 17:57:58 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-10-16 17:57:57 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-10-16 17:57:57 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-10-16 17:57:56 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2014-10-16 17:57:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-10-16 17:57:56 ----A---- C:\WINDOWS\system32\rastls.dll
2014-10-16 17:57:55 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-10-16 17:57:55 ----A---- C:\WINDOWS\system32\msi.dll
2014-10-16 17:57:55 ----A---- C:\WINDOWS\system32\authui.dll
2014-10-16 17:57:54 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-10-16 15:35:26 ----A---- C:\WINDOWS\system32\shell32.dll
2014-10-16 15:35:24 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-10-16 15:35:23 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-10-16 15:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-10-16 15:35:21 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-10-16 15:35:20 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-10-16 15:35:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-10-16 15:35:19 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-10-16 15:35:18 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-10-16 15:35:18 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-10-16 15:35:18 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-10-16 15:35:17 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-10-16 15:35:17 ----A---- C:\WINDOWS\system32\propsys.dll
2014-10-16 15:35:16 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-10-16 15:35:16 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-10-16 15:35:16 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\system32\Wldap32.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-10-16 15:35:14 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-10-16 15:35:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-10-16 15:35:14 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\pcsvDevice.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\httpprxm.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-10-16 15:35:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-16 15:35:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-16 15:35:12 ----A---- C:\WINDOWS\system32\ProximityService.dll
2014-10-16 15:35:12 ----A---- C:\WINDOWS\system32\adhsvc.dll
2014-10-12 15:25:00 ----D---- C:\Users\Pavel\AppData\Roaming\Mozilla
2014-10-12 15:24:52 ----D---- C:\ProgramData\Mozilla
2014-10-12 15:24:51 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-12 10:29:36 ----D---- C:\Users\Pavel\AppData\Roaming\Mp3tag
2014-10-12 10:28:25 ----D---- C:\Program Files (x86)\Mp3tag
2014-10-11 08:58:55 ----D---- C:\Users\Pavel\AppData\Roaming\VitySoft
2014-10-10 23:11:09 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-10-10 23:11:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-10-10 23:10:55 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-10-10 23:10:53 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2014-10-10 23:10:52 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-10-10 23:10:50 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-10-10 23:10:49 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-10-10 23:10:49 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2014-10-10 23:10:49 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-10-10 23:10:48 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-10-10 23:10:48 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-10-10 23:10:48 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\system32\localspl.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2014-10-10 23:10:45 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-10-10 23:10:45 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-10-10 23:10:45 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-10-10 23:10:44 ----A---- C:\WINDOWS\system32\SRH.dll
2014-10-10 23:10:44 ----A---- C:\WINDOWS\system32\printui.dll
2014-10-10 23:10:44 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-10-10 23:10:43 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-10-10 23:10:43 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2014-10-10 23:10:43 ----A---- C:\WINDOWS\system32\mispace.dll
2014-10-10 23:10:43 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-10-10 23:10:43 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-10-10 23:10:42 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-10-10 23:10:42 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-10-10 23:10:42 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-10-10 23:10:42 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-10-10 23:10:42 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-10-10 23:10:41 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-10-10 23:10:41 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\system32\aclui.dll
2014-10-10 23:10:40 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-10-10 23:10:40 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2014-10-10 23:10:40 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\system32\spoolsv.exe
2014-10-10 23:10:40 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\system32\usbmon.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\system32\mftranscode.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-10-10 23:10:38 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-10-10 23:10:38 ----A---- C:\WINDOWS\system32\wisp.dll
2014-10-10 23:10:38 ----A---- C:\WINDOWS\system32\winload.exe
2014-10-10 23:10:38 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-10-10 23:10:38 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-10-10 23:10:37 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-10-10 23:10:37 ----A---- C:\WINDOWS\system32\wsecedit.dll
2014-10-10 23:10:37 ----A---- C:\WINDOWS\system32\winresume.exe
2014-10-10 23:10:37 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-10-10 23:10:37 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-10-10 23:10:36 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-10-10 23:10:36 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\winmmbase.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\user32.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-10-10 23:10:35 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\system32\conhost.exe
2014-10-10 23:10:34 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\VAN.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\osk.exe
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\Display.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\AppxSip.dll
2014-10-10 23:10:33 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\winmm.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\mfps.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\drivers\NdisImPlatform.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\prnntfy.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2014-10-10 23:10:31 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\system32\puiapi.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\system32\iasnap.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\system32\gpedit.dll
2014-10-10 23:10:30 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-10-10 23:10:30 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-10-10 23:10:30 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-10-10 23:10:30 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-10-10 23:10:30 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-10-10 23:10:29 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\stobject.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\dab.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\wshbth.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\schannel.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\rsaenh.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\system32\browser.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2014-10-10 23:10:26 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2014-10-10 23:10:26 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2014-10-10 23:10:24 ----AC---- C:\WINDOWS\system32\drivers\bthpan.sys
2014-10-10 23:10:24 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-10-10 23:10:24 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2014-10-10 23:10:24 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-10-10 23:10:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-10-10 23:10:24 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-10-10 23:10:24 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2014-10-10 23:10:24 ----A---- C:\WINDOWS\system32\certcli.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\system32\compstui.dll
2014-10-10 23:10:22 ----AC---- C:\WINDOWS\system32\drivers\bthmodem.sys
2014-10-10 23:10:22 ----A---- C:\WINDOWS\SYSWOW64\KBDTT102.DLL
2014-10-10 23:10:22 ----A---- C:\WINDOWS\system32\KBDTT102.DLL
2014-10-10 08:31:24 ----A---- C:\WINDOWS\SYSWOW64\RtsPStorIcon.dll
2014-10-09 16:56:38 ----SD---- C:\WINDOWS\system32\CompatTel
2014-10-09 11:13:50 ----A---- C:\WINDOWS\system32\termsrv.dll
2014-10-09 11:00:13 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-10-09 11:00:10 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-10-09 11:00:10 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-10-09 11:00:10 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-10-09 11:00:09 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-10-09 11:00:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-10-09 11:00:08 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-10-09 10:54:17 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-10-09 10:54:17 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-10-09 10:54:16 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-10-09 10:54:15 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-10-09 10:54:15 ----A---- C:\WINDOWS\system32\twinui.dll
2014-10-09 10:54:13 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-10-09 10:54:13 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-10-09 10:54:13 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-10-09 10:54:13 ----A---- C:\WINDOWS\explorer.exe
2014-10-09 10:53:09 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-10-09 10:53:09 ----A---- C:\WINDOWS\system32\tcpmon.dll
2014-10-09 10:53:09 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-10-09 10:53:07 ----A---- C:\WINDOWS\system32\devinv.dll
2014-10-09 10:53:07 ----A---- C:\WINDOWS\system32\aepic.dll
2014-10-09 10:52:52 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-10-09 10:50:01 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2014-10-09 10:50:01 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2014-10-09 10:50:00 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-10-09 10:50:00 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-10-09 10:49:59 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-10-09 10:49:59 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-10-09 10:49:59 ----A---- C:\WINDOWS\system32\wusa.exe
2014-10-09 10:49:59 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-10-09 10:49:59 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-10-09 10:49:59 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-10-09 10:49:58 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-10-09 10:49:57 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-10-09 10:49:57 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-10-09 10:47:23 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-10-09 10:47:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-10-09 10:47:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-10-09 10:47:02 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-10-09 10:47:02 ----A---- C:\WINDOWS\system32\winmde.dll
2014-10-09 10:47:01 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-10-09 10:47:01 ----A---- C:\WINDOWS\system32\services.exe
2014-10-09 10:47:01 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-10-09 10:47:00 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-10-09 10:47:00 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-10-09 10:47:00 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-10-09 10:46:59 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
Nemůžu se toho zbavit, poradíte mi?
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pavel at 2014-11-02 14:50:27
Microsoft Windows 8.1
System drive C: has 492 MB (0%) free of 105 GB
Total RAM: 4003 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:50:52, on 2. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Users\Pavel\AppData\Roaming\PYAVA.exe
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files (x86)\Sony\VAIO Control Center\VAIO Clip.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\WINDOWS\SysWOW64\DllHost.exe
C:\Program Files (x86)\YTDownloader\YTDUninstall.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Pavel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sony13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sony13.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ATLauncher] "C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe" /createshortcuts:1
O4 - HKLM\..\Run: [ATUninstallIcon] "C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe" /createuninstallentry:1
O4 - HKLM\..\Run: [Intel AppUp(R) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [YTDownloader] "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
O4 - HKCU\..\Run: [T-Mobile CManager] "C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [BackgroundSwitcher] "C:\Program Files (x86)\Background Switcher\BackgroundSwitcher.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Pavel\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [YTDownloader] "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
O4 - Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe
O4 - Global Startup: Canon LBP2900 Status Window.lnk = C:\Windows\System32\spool\drivers\x64\3\CNAB4LAD.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.22.0.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{97BFE53B-05E6-4621-83DA-69B61D4E5172}: NameServer = 93.153.117.1 93.153.117.33
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: BrcmSetSecurity - Intel - C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service (ESRV_SVC) - Intel Corporation - C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee OOBE Service2 (McOobeSv2) - Unknown owner - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NetworkSupport - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Intel(R) System Behavior Tracker Collector Service (SampleCollector) - Intel Corporation - C:\Program Files\Sony\VAIO Care\VCPerfService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: VAIO Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O23 - Service: VAIO Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
O23 - Service: VAIO Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service (USER_ESRV_SVC) - Intel Corporation - C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VCService - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update\vuagent.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 14314 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
C:\WINDOWS\system32\WLANExt.exe 361489369824
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
/QuitInfo:00000000000006E0;000000000000021C;
/loadhooks /Parent:00000000000008c8
C:\WINDOWS\System32\spoolsv.exe
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskeng.exe {B9E75BF9-5EFE-493C-B222-0A0584470172}
"c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskeng.exe {569FF3CC-E46F-483A-8AC4-2197CC057166}
C:\Users\Pavel\AppData\Roaming\PYAVA.exe /infocmdline=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
"C:\Program Files (x86)\Ge-Force\5a0a50d3-4cb9-42c1-a7da-ec6218344242-11.exe" /rawdata=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
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {be4b444a-0a64-4183-a40f59cfb04c4e6b}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Ge-Force\5a0a50d3-4cb9-42c1-a7da-ec6218344242-7.exe" /rawdata=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
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
"C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe"
C:\WINDOWS\SysWOW64\DllHost.exe /Processid:{CB45D4CA-8A34-4EF1-9957-6134E5270E83}
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe"
C:\WINDOWS\SysWOW64\svchost.exe -k MbnExt
"C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe" -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d78e03cb-0f26-4970-accc-e769c339dc5b -SystemEventPortName:HostProcess-c6b7977e-006a-474c-ad86-c50b6b11f1d0 -IoCancelEventPortName:HostProcess-1af1c72c-a4d3-44e4-86bb-516527c78dda -NonStateChangingEventPortName:HostProcess-126283eb-37a0-4d78-9098-9ecb53a32643 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3405c785-45fe-48f1-8cd5-93517742a94c -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SONYAPO
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Background Switcher\BackgroundSwitcher.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.EXE"
"C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
C:\WINDOWS\system32\CNAB4RPD.EXE
"C:\Program Files\Rainmeter\Rainmeter.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
"C:\Program Files (x86)\Sony\VAIO Control Center\VAIO Clip.exe"
"" "--start" "--register_port" "--address" "127.0.0.1" "--port" "49266" "--pause_on_user_switching" "--depend_on_service" "SampleCollector" "--depend_on_service_start_state_not" "disabled" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Sony\VAIO Care\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=no output_folder='C:\ProgramData\Sony Corporation\VAIO Care\inteldata\userlogs' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Sony\VAIO Care\ESRV\sony_foreground_window_input.dll' "
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe" /Stationary
"C:\Program Files\Sony\VAIO Update\vuagent.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe" "--AUTO_START" "--start" "--address" "127.0.0.1" "--port" "49265" "--depend_on_service" "SampleCollector" "--depend_on_service_start_state_not" "disabled" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Sony\VAIO Care\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=w output_folder='C:\ProgramData\Sony Corporation\VAIO Care\inteldata' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Sony\VAIO Care\ESRV\sony_acpi_battery_input.dll' il='C:\Program Files\Sony\VAIO Care\ESRV\sony_sema_thermal_input.dll' il='C:\Program Files\Sony\VAIO Care\ESRV\sony_wifi_input.dll' "
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Sony\VAIO Care\VCPerfService.exe" "/service" "/sstates" "/sampleinterval=10000" "/procinterval=5" "/dllinterval=120" "/counter=\Processor(_Total)\% Processor Time:1" "/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1" "/counter=\Network Interface(*)\Bytes Total/sec:1" "/expandcounter=\Processor Information(*)\Processor Frequency:1" "" "/expandcounter=\Processor(*)\% Idle Time:1" "/expandcounter=\Processor(*)\% C1 Time:1" "/expandcounter=\Processor(*)\% C2 Time:1" "/expandcounter=\Processor(*)\%C3 Time:1" "/expandcounter=\Processor(*)\% Processor Time:1" "/directory=C:\ProgramData\Sony Corporation\VAIO Care\inteldata"
C:\Program Files\Sony\VAIO Care/listener.exe /silent /slot=0
C:\WINDOWS\SysWOW64\DllHost.exe /Processid:{FCC74B77-EC3E-4DD8-A80B-008A702075A9}
"C:\Program Files (x86)\YTDownloader\YTDUninstall.exe"
"C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe" -System
C:\WINDOWS\system32\DllHost.exe /Processid:{B32DAC50-97B2-4BF7-A8DB-418294621529}
"C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe" -User
"C:\Program Files\Sony\VAIO Care\VCSystemTray.exe" -versionsave -reminder -autoupdate
"C:\Program Files\Sony\VAIO Care\VCService.exe"
"C:\Program Files\Sony\VAIO Care\VCAgent.exe"
"C:\WINDOWS\system32\rundll32.exe" "c:\program files (x86)\t-mobile\web'n'walk manager\mbnext.dll",HuaweiNdisConnect HUAWEI Mobile Connect - Network Adapter
internet.t-mobile.cz
0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1540.0.1766485701\1264280325" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,16 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3304 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="DomRel-Enable/disable/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/PP_Ethersuggest_A4_Stable_R8/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_80/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="1540.1.679279127\49557266" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/PP_Ethersuggest_A4_Stable_R8/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_80/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="1540.6.1174550736\2116082920" /prefetch:673131151
wmiadap.exe /R /T
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group17 pct:1h stable:r1 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/PP_Ethersuggest_A4_Stable_R8/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_80/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_11/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --channel="1540.7.350879202\272139576" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Users\Pavel\Downloads\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\WINDOWS\tasks\5a0a50d3-4cb9-42c1-a7da-ec6218344242-4.job - C:\Program Files (x86)\Ge-Force\5a0a50d3-4cb9-42c1-a7da-ec6218344242-4.exe /rawdata=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
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-940705288-3414804496-2694118918-1001Core.job - C:\Users\Pavel\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-940705288-3414804496-2694118918-1001UA.job - C:\Users\Pavel\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\PYAVA.job - C:\Users\Pavel\AppData\Roaming\PYAVA.exe /infocmdline=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
=========Mozilla firefox=========
ProfilePath - C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\Profiles\s1hde9vu.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.20]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin]
"Description"=McAfee Mss Plugin
"Path"=C:\Program Files\Sony\MSS\3.8.141\npMcAfeeMss.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.13.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-06-24 551840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-27 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-24 209824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-01-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-27 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-01-25 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-07 1307720]
"AutoKMS"=C:\Windows\AutoKMS.exe [2013-10-29 615936]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2013-09-16 391128]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2013-09-16 771032]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-09-16 769496]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-10-09 7818040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile CManager"=C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2013-10-31 2166552]
"BackgroundSwitcher"=C:\Program Files (x86)\Background Switcher\BackgroundSwitcher.exe [2013-05-20 120424]
"AdobeBridge"= []
"Facebook Update"=C:\Users\Pavel\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-10-10 138096]
"YTDownloader"=C:\Program Files (x86)\YTDownloader\YTDownloader.exe /boot []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PMBVolumeWatcher"=C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-02-06 740376]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"ATLauncher"=C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe /createshortcuts:1 []
"ATUninstallIcon"=C:\Program Files\McAfeeEx\McAfeeAntiTheft\ATLauncher.exe /createuninstallentry:1 []
"Intel AppUp(R) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2013-02-19 156000]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-08-27 4085896]
"ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2013-10-25 73832]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"YTDownloader"=C:\Program Files (x86)\YTDownloader\YTDownloader.exe /boot []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Canon LBP2900 Status Window.lnk - C:\Windows\System32\spool\drivers\x64\3\CNAB4LAD.EXE
C:\Users\Pavel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Rainmeter.lnk - C:\Program Files\Rainmeter\Rainmeter.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-09-16 623104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-02 14:50:27 ----D---- C:\rsit
2014-11-02 14:50:27 ----D---- C:\Program Files\trend micro
2014-11-01 20:35:55 ----A---- C:\Users\Pavel\AppData\Roaming\PYAVA.exe
2014-11-01 20:35:27 ----D---- C:\Program Files (x86)\Ge-Force
2014-11-01 20:34:25 ----D---- C:\Program Files (x86)\YTDownloader
2014-10-30 16:15:59 ----D---- C:\Users\Pavel\AppData\Roaming\Racket
2014-10-30 16:11:35 ----D---- C:\Program Files\Microsoft SQL Server
2014-10-30 15:51:08 ----D---- C:\Program Files\Racket
2014-10-22 17:23:51 ----D---- C:\Users\Pavel\AppData\Roaming\Hamachi
2014-10-22 17:23:36 ----A---- C:\WINDOWS\system32\drivers\hamachi.sys
2014-10-22 17:23:35 ----D---- C:\Program Files (x86)\Hamachi
2014-10-19 12:28:45 ----D---- C:\Users\Pavel\AppData\Roaming\uTorrent
2014-10-16 18:07:10 ----A---- C:\WINDOWS\system32\win32k.sys
2014-10-16 18:06:59 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-10-16 18:06:59 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-10-16 18:06:57 ----A---- C:\WINDOWS\system32\winbici.dll
2014-10-16 18:02:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-10-16 18:02:29 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-10-16 18:02:28 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wups2.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wups.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-10-16 18:02:28 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-10-16 18:02:22 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-10-16 18:02:20 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-10-16 18:02:03 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-10-16 18:02:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-10-16 18:01:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-10-16 18:01:55 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-10-16 18:01:54 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-10-16 18:01:53 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-10-16 18:01:53 ----A---- C:\WINDOWS\system32\wininet.dll
2014-10-16 18:01:52 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-10-16 18:01:52 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-10-16 18:01:52 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-10-16 18:01:52 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-10-16 18:01:51 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-10-16 18:01:51 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-10-16 18:01:50 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-10-16 18:01:50 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-10-16 18:01:50 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-10-16 18:01:49 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-10-16 18:01:26 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-10-16 18:01:26 ----A---- C:\WINDOWS\system32\packager.dll
2014-10-16 17:57:58 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-10-16 17:57:57 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-10-16 17:57:57 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-10-16 17:57:56 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2014-10-16 17:57:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-10-16 17:57:56 ----A---- C:\WINDOWS\system32\rastls.dll
2014-10-16 17:57:55 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-10-16 17:57:55 ----A---- C:\WINDOWS\system32\msi.dll
2014-10-16 17:57:55 ----A---- C:\WINDOWS\system32\authui.dll
2014-10-16 17:57:54 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-10-16 15:35:26 ----A---- C:\WINDOWS\system32\shell32.dll
2014-10-16 15:35:24 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-10-16 15:35:23 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-10-16 15:35:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-10-16 15:35:21 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-10-16 15:35:20 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-10-16 15:35:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-10-16 15:35:19 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-10-16 15:35:18 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-10-16 15:35:18 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-10-16 15:35:18 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-10-16 15:35:17 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-10-16 15:35:17 ----A---- C:\WINDOWS\system32\propsys.dll
2014-10-16 15:35:16 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-10-16 15:35:16 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-10-16 15:35:16 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\system32\Wldap32.dll
2014-10-16 15:35:15 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-10-16 15:35:14 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-10-16 15:35:14 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-10-16 15:35:14 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\pcsvDevice.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\httpprxm.dll
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-10-16 15:35:13 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-10-16 15:35:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-16 15:35:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-16 15:35:12 ----A---- C:\WINDOWS\system32\ProximityService.dll
2014-10-16 15:35:12 ----A---- C:\WINDOWS\system32\adhsvc.dll
2014-10-12 15:25:00 ----D---- C:\Users\Pavel\AppData\Roaming\Mozilla
2014-10-12 15:24:52 ----D---- C:\ProgramData\Mozilla
2014-10-12 15:24:51 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-12 10:29:36 ----D---- C:\Users\Pavel\AppData\Roaming\Mp3tag
2014-10-12 10:28:25 ----D---- C:\Program Files (x86)\Mp3tag
2014-10-11 08:58:55 ----D---- C:\Users\Pavel\AppData\Roaming\VitySoft
2014-10-10 23:11:09 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-10-10 23:11:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-10-10 23:10:55 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-10-10 23:10:53 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2014-10-10 23:10:52 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-10-10 23:10:50 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-10-10 23:10:49 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-10-10 23:10:49 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2014-10-10 23:10:49 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-10-10 23:10:48 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-10-10 23:10:48 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-10-10 23:10:48 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\system32\localspl.dll
2014-10-10 23:10:46 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2014-10-10 23:10:45 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-10-10 23:10:45 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-10-10 23:10:45 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-10-10 23:10:44 ----A---- C:\WINDOWS\system32\SRH.dll
2014-10-10 23:10:44 ----A---- C:\WINDOWS\system32\printui.dll
2014-10-10 23:10:44 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-10-10 23:10:43 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-10-10 23:10:43 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2014-10-10 23:10:43 ----A---- C:\WINDOWS\system32\mispace.dll
2014-10-10 23:10:43 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-10-10 23:10:43 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-10-10 23:10:42 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-10-10 23:10:42 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-10-10 23:10:42 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-10-10 23:10:42 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-10-10 23:10:42 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-10-10 23:10:41 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-10-10 23:10:41 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-10-10 23:10:41 ----A---- C:\WINDOWS\system32\aclui.dll
2014-10-10 23:10:40 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-10-10 23:10:40 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2014-10-10 23:10:40 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\system32\spoolsv.exe
2014-10-10 23:10:40 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-10-10 23:10:40 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\system32\usbmon.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\system32\mftranscode.dll
2014-10-10 23:10:39 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-10-10 23:10:38 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-10-10 23:10:38 ----A---- C:\WINDOWS\system32\wisp.dll
2014-10-10 23:10:38 ----A---- C:\WINDOWS\system32\winload.exe
2014-10-10 23:10:38 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-10-10 23:10:38 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-10-10 23:10:37 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-10-10 23:10:37 ----A---- C:\WINDOWS\system32\wsecedit.dll
2014-10-10 23:10:37 ----A---- C:\WINDOWS\system32\winresume.exe
2014-10-10 23:10:37 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-10-10 23:10:37 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-10-10 23:10:36 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-10-10 23:10:36 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\winmmbase.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\user32.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-10-10 23:10:36 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-10-10 23:10:35 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-10-10 23:10:35 ----A---- C:\WINDOWS\system32\conhost.exe
2014-10-10 23:10:34 ----A---- C:\WINDOWS\SYSWOW64\winmmbase.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\VAN.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\osk.exe
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\Display.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-10-10 23:10:34 ----A---- C:\WINDOWS\system32\AppxSip.dll
2014-10-10 23:10:33 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\winmm.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\mfps.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\drivers\NdisImPlatform.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2014-10-10 23:10:33 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\prnntfy.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-10-10 23:10:32 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2014-10-10 23:10:31 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\SYSWOW64\winmm.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\SYSWOW64\prnntfy.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\system32\puiapi.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\system32\iasnap.dll
2014-10-10 23:10:31 ----A---- C:\WINDOWS\system32\gpedit.dll
2014-10-10 23:10:30 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-10-10 23:10:30 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-10-10 23:10:30 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-10-10 23:10:30 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-10-10 23:10:30 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-10-10 23:10:29 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\SYSWOW64\iasnap.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\SYSWOW64\gpedit.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\stobject.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\dab.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-10-10 23:10:29 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\wshbth.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\schannel.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\rsaenh.dll
2014-10-10 23:10:28 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-10-10 23:10:27 ----A---- C:\WINDOWS\system32\browser.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\KBDRUM.DLL
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-10-10 23:10:26 ----A---- C:\WINDOWS\system32\KBDRUM.DLL
2014-10-10 23:10:26 ----A---- C:\WINDOWS\system32\KBDRU.DLL
2014-10-10 23:10:26 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\KBDYAK.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\KBDRU1.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\KBDRU.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\SYSWOW64\KBDBASH.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\system32\KBDYAK.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\system32\KBDRU1.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\system32\KBDBASH.DLL
2014-10-10 23:10:25 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2014-10-10 23:10:24 ----AC---- C:\WINDOWS\system32\drivers\bthpan.sys
2014-10-10 23:10:24 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-10-10 23:10:24 ----A---- C:\WINDOWS\SYSWOW64\KBDTAT.DLL
2014-10-10 23:10:24 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-10-10 23:10:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-10-10 23:10:24 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-10-10 23:10:24 ----A---- C:\WINDOWS\system32\KBDTAT.DLL
2014-10-10 23:10:24 ----A---- C:\WINDOWS\system32\certcli.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-10-10 23:10:23 ----A---- C:\WINDOWS\system32\compstui.dll
2014-10-10 23:10:22 ----AC---- C:\WINDOWS\system32\drivers\bthmodem.sys
2014-10-10 23:10:22 ----A---- C:\WINDOWS\SYSWOW64\KBDTT102.DLL
2014-10-10 23:10:22 ----A---- C:\WINDOWS\system32\KBDTT102.DLL
2014-10-10 08:31:24 ----A---- C:\WINDOWS\SYSWOW64\RtsPStorIcon.dll
2014-10-09 16:56:38 ----SD---- C:\WINDOWS\system32\CompatTel
2014-10-09 11:13:50 ----A---- C:\WINDOWS\system32\termsrv.dll
2014-10-09 11:00:13 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-10-09 11:00:10 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-10-09 11:00:10 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-10-09 11:00:10 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-10-09 11:00:09 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-10-09 11:00:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-10-09 11:00:08 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-10-09 10:54:17 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-10-09 10:54:17 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-10-09 10:54:16 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-10-09 10:54:15 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-10-09 10:54:15 ----A---- C:\WINDOWS\system32\twinui.dll
2014-10-09 10:54:13 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-10-09 10:54:13 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-10-09 10:54:13 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-10-09 10:54:13 ----A---- C:\WINDOWS\explorer.exe
2014-10-09 10:53:09 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-10-09 10:53:09 ----A---- C:\WINDOWS\system32\tcpmon.dll
2014-10-09 10:53:09 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-10-09 10:53:07 ----A---- C:\WINDOWS\system32\devinv.dll
2014-10-09 10:53:07 ----A---- C:\WINDOWS\system32\aepic.dll
2014-10-09 10:52:52 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-10-09 10:50:01 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2014-10-09 10:50:01 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2014-10-09 10:50:00 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-10-09 10:50:00 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-10-09 10:49:59 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-10-09 10:49:59 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-10-09 10:49:59 ----A---- C:\WINDOWS\system32\wusa.exe
2014-10-09 10:49:59 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-10-09 10:49:59 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-10-09 10:49:59 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-10-09 10:49:58 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-10-09 10:49:57 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-10-09 10:49:57 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-10-09 10:47:23 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-10-09 10:47:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-10-09 10:47:03 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-10-09 10:47:02 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-10-09 10:47:02 ----A---- C:\WINDOWS\system32\winmde.dll
2014-10-09 10:47:01 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-10-09 10:47:01 ----A---- C:\WINDOWS\system32\services.exe
2014-10-09 10:47:01 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-10-09 10:47:00 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-10-09 10:47:00 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-10-09 10:47:00 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-10-09 10:46:59 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
Stahnete AdwCleaner 
Zase nekdy 
