šmejdi v ntb
Napsal: 11 pro 2014 20:35
Dobrý den, chtěl bych požádat o pomoc s odstraněním šmejdů, kteří mi znepříjemňují život.
1.Jedná se o program TotalPlusHD, který jsem odinstaloval pomocí CCleaneru, ale podle správce úloh se mi ten program pořád v počítači spouští a nadále ho už nevidím v žádném programu na odinstalovaní.
2. a můj druhý problém je v prohlížeči Chrome, kde se mi stále objevují prázdná okna v rozích nebo mi vyskakuje nechtěná reklama. Při delším běhu mi prohlížeč dokonce spadne s tím, že program přestal pracovat. to mi způsobuje zase nějaký Cinema-Plus-1.8c
přikládám log. za každou radu budu velmi vděčný.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2014-12-11 20:27:15
Microsoft Windows 8.1
System drive C: has 22 GB (18%) free of 122 GB
Total RAM: 3546 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:27:25, on 11. 12. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Users\Martin\Downloads\MRDownloader.exe
C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.230\deploy\LoLLauncher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.14\deploy\LoLPatcher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.120\deploy\LolClient.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:af44b6eb921263aab3745f0f51f99e97] "C:\Users\Martin\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Martin\AppData\Roaming\Seznam.cz"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: 4game-service - Innova Co S.a r.l. - C:\Program Files (x86)\4game\3.2.0.238\4game-service.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem16.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11502 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {2FCF572C-81C9-44B2-8115-5DBB1BBF69FF}
"C:\Program Files (x86)\4game\3.2.0.238\4game-service.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
dashost.exe {781e8ea3-1469-4fcc-af1a97264bbf75d0}
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
ngservice.exe pipeserver
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\Explorer.EXE
taskhostex.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Users\Martin\Downloads\MRDownloader.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
taskhost.exe
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe"
"C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe" updateandrun lol_launcher LoLLauncher.exe
LoLLauncher.exe
"C:/Riot Games/League of Legends/RADS/projects/lol_patcher/releases/0.0.0.14/deploy/LoLPatcher.exe"
"C:/Riot Games/League of Legends/RADS/projects/lol_air_client/releases/0.0.1.120/deploy//LolClient.exe" -runtime .\ -nodebug META-INF\AIR\application.xml .\ -- 8393
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9223
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6848.0.536323285\1384834512" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38 --gpu-vendor-id=0x1002 --gpu-device-id=0x990a --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6848.2.534538744\583258204" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6848.3.1456358839\1085023828" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6848.5.1712415050\996201655" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="6848.10.662243476\2076047897" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-6.exe" /rawdata=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
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SHA1ToolbarUIJanuary2017/Warning/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6848.44.592028914\893902563" /prefetch:673131151
C:\WINDOWS\system32\DllHost.exe /Processid:{76D0CB12-7604-4048-B83C-1005C7DDC503}
"C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe"
"C:\Users\Martin\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-1.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\TotalPlusHD-3.1V30.11-codedownloader.exe /rawdata=JgifW7V8RxpzilU5h3UDEFCc1KBS3B6SZROBfX9UDXmtfdMPK1tV8JZMdeoU4fPDI/e+bAQQqCMbAgDSPhKPMYpofUy3UqOZlpfaq5uzH6EiyIadcF/b3Rz5N9v/1XlM/nRKyTN/bnMLKsF+Deua+w6Nehikh1Ru4H5j8jbSHEVOKAgsM4tfZomHYkBTmLzi9UVK35LktOZpTnT3cbEaJcgHpxpCQoHTCgVXi6EhhsKZqBaZ33BJceuRvbJGpr24veMTTZ7iZR9PyyOYmbyhTbbtLEAPWOazu2kP7GbDWNUdMYhCggtsp4y5tuCsy2aOtl9fpYD4r5xLx5F2cV7IpgbEhOiZWGkWOqAFdvyK4sKU43/EaBKWLLUm30SpVDenbqXROliQqrM/FzNKgQ3rekM6loL47W/hMyvvJnIbSVOfLSdhOPmCC3w7xXDCmqiJa8+F96/xpMxCCnUd6zSQx40fGalheGKok4ISqTFEqSxqYAeezatED9OjG9s5RHRdNVZLsTgVbjV8rkYD/PO6v8No0FQ9YaWHb8SE1bEcpPgFiriLpVubp6baEy7wc8aHsh5IV6h+cNKASPLWgyljIwJuHxKY4yI4+MUgaXhuSYEKJbljkKAkavbswkX/lUmkLIE87gNeskVrzGoCOQXSZdm9uFjL2hAzTIshby1slyYjvjKXE92JZOYZB24PeTU7U3dje1JHawuffmCAOReVCiL2NjqH+/dVq35MQfy5r487o/h5dvrWe6SgBicj8lSYqVIqyXkGp4NBsM1TDLoI34Z2nJfM5s9PjkoGYmKHyZqWAX0RxS8XQekqcUf0Kh14stcWbHbJgtuM5HHAd5SxfzsZ/cyQ1r/2crClKk8tEF5ikFpcMKd/Z1ml/xwjtY0VXfe5iocMel3nPYK6s82n4u2MXsUG62f5V8rT5b3xWyh3hEXHvOGXwC1cLzcx2nPfdTDQ5ntKtCA5uDIDWezEiIRMLKfeluHxOp0QPEoL+C7oeiqckly4STjhiYHitbwhubNTMKf/X4fwiqIMfU/ApOsk6UkI4WTsH5mec98IWnXkJ8xkd9BM0cHf/qSRaiNQpyzjvzzdE1Oy8YamFHMjXbhLHcjoXF3NLmcKjvgi0VheAEFvzJqUaMjLNFb8HpaiKXDzOb1qZzkyR+dTMw+1QKV53/j3wpRWkM0fMUlq3cMh6Kd4NSpbO89o/RwS/iF+qV7XSL0hyqfJ9aKRPEl80kF5s1E81KDG8Uv9XLo7RsWETruj+Oi2llh3+mGGtJH19FM1CBxH5Hro0y7wxkXSghKPZLyTsiGjhA/nwg1RPcbcefxM6LB1KOUtEF+XQFDSDVUG2sa8QhgSRO8Tf7QQzW8gV55B5qofB8NMrOIBzraAm0ZUP4QoKszYHrHZQHjb6w80bGtGHGTtN0f3lrtEBaeTOi0uKCNRtFcKPTpsqM5qcHzhzuS+9/tvmMjCe0k5agbgsNDumhhahS18Ibg75RRYuUdBFK4r0GUwrlv3TQGA8NfXUf72OAx7qP+6KqNf
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-11.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-11.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-3.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-3.exe /rawdata=vNBQER56a7DB+yYu0DR2QYn92mk8lM7YFmE0nnFR5YrSWvutbS4aOWMIludi8cBdN2gBm6B78PKgEE3fe5Hz95KqaiF7lXs+jCGz5kCtKrFBzomEyQNYdD3icr+rNdhgPaK3yIpIfH4ncUrHuPi8HL4Ny59aozuu/ZHh9YTfIwvApgdgwdpGW+jsbVrv7wcHvSVGOTq5kGLdhm0i7cKDdRVTxmm9Klo+E1ttdVx6+aw0MysETeUNe1OzdLBMz9iQWuq2xLvEtTW1ZHNINJdUQBPFrkZYgDH/+xMYU71yQa6rdjCxhD+G5y0H5QVcjkHVaVG8eUN+DxoTQA+vDBGRLEVkDb2qJwaJ7VGpjNwZQpwuoZFwJ65Oh+JfqP+g8CSXoiwTHlsZCi9WHWrkaiNvUHvofVQ6iWmPd8/a1AiN8q/Sf58s90t31UjZFyWX1wVC22YxUtlkLZ5r8nONXQl30PCgkpph9WYSTUhVRjoglSujRvnEq1Ns/EsjqKDoXXfAOu40WHby3JKxfrnBDC9IsxqYX4QZJ5hK0OqxqYRXGLF5gy+WzpJiE6jVZQ2uuKn9tODfQ1YIvosotjX8QnHGNYTmcrCK9u4HXgN5Zryh2cyA0MviMi99wjuXb5TE7vPkbWqJhRizdggdKUcMCDSsoodgiVlswbS9vdJ200BQ04Y1OhI4lIauYYf5qg9kaw8HO4VMzCY7z2FPiLEjePMogbu0HWAq5h/BPCzDWdkkdU1eYLTzBdxWQ55HehZRLvfX/LiVoXxHb8+hTS8TQ/xDIEW0V7ZYqnK2Bl1RoGY8UV4gchC0Ekw8xEwCoOx87PE5jf33e3o3rTE2MI0vgXiad4STktWKuT1ce4ujT0faD+NTnjJyFCdMEReVc3xoOrIk5JLEVSl0VDB9c0/U4OwLVTUwGjsTjghgp3Iul2k/kxrlpyiqBwIhCOaZhDK1I2xe3thyCewmMIKarI8BmYJllEuw3oq1VwVv9AWLO63MWmNoHqNPnkNDSsfZmeAifDKFduqykCRj/DriWntRjNlD216KAnp0F+7XeipJmnnJ9H8HNdsLSi8rQiHFHYVXQFE4rQUC3HbUIoL0JzXKvTtDpvltRD93hAqbmeoKghY+QcLPxQxW6RbM0xXst21x7sE+UqdMWSDySLi2Vrhx8zxLxrAJyW43KClDq/Cr+YvDrHQuw+PHZUNkXKmmdP8YoVGIvBN18bP13BNcVhyDzL0oMJ7cjOMX5q1xLCzgUL+0pCdo2Bsxq6BKhybV3tw385SUU/jYnlOM/Nr5prROXBq93bO3eQKzqT4TtkHNqoB6LoKFe/prZwzcH0hmhuf1diIVZ4dr4li0cq6GtV3+v+6wiGk3WTaPMpGYC9LLzyZSAiz+Mhi5DLYtnY9Q9pk8DH8thTafhUmB3NpCAQcMdJzjOtEgeos//gfqOmudUQYEf22hOhUczmb1/w9VgkBHncNChi0xhMYRHS6rTeIellru0IgCR9JOlRlbVi688Jnpb00sGw54QbkWwgciCBnbFr4HSy6zWrHlG+Mr8OBsuhFZpQA3EElxJyiv5LO4eVUsJdEX0b5vKdUBDJ7pg47Xiuk3Cgh0NnGGSCdoTxWk67XkolDxIJjDm3WUtT/ZNlhJYVCVeynq9E6PngEpDkrENP+izl5DwFEDu8eOUUsUkSQMWseQYfVOjWfYIDLbexhzAahQSpkd79GwDzNDWEAB0nn5wKaPVlhJ4QO3h1I1IpBz5osr5KwlsMOpAFlNIIF5ZQB4Hu/0BoPwmTwYw3VEA7ApMO/5s9hPYGEiVCvPgHHGpyOwozoxkmMWzB8CdXe5eLKtPqxFsmlFDg2dNfMezF9Wg9eZL7kF/EuzMOyS+MR99kgMwd0xhynasHbKKPaKOzTT+JEQhf9rtNBxZ6SKktR+DjQxCJM9h85++MkpMQB5J0vu9zcm88MMvQsdhywtmuaNH+jomzkvAnDi09TVT5wn3iLJODiJFCStHVGjVGlc8+4KDWxOPYjlGq0gZFL2sXHV+QhF7Vyee8UqHaUYsbch
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-5.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-5.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-5_user.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-5.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-6.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-6.exe /rawdata=QmI6sWYzD/H8SJKUR/ZEnV0SB4LdlB4YturZC+WkZrcSOpj0y+CyQlRAxnxOWWcMozJSGNWxfkezJX2r8RRfK3YGd0H2Zu/D6fZkbH5eKPhFK5ER6bzx+2+p+nM5pMxesbXSqEAIarwHGPssaQwmC50tKcw7Jyr592veabE9WD0M12WpYdgg4i/zYuDMcfipyh23K8sROHBT0oDZRhTe26s4mXLzoMMGoTVoShToTkYGucY+XipWi1K8KVJLZZl8I21WtZaEgbji39enRHm3BEliXjhygJAzaHiiQSJj8gnjjAUaVrjKo4QUJxF0QhefWzVCJOQ7hCJw6PF7xRejeZMwb7PqKa66GO1juarXRnkdxi99KzFRKeM9qfD0NH9+kTgtMr/ELHirsk2N8FRMn1x3orMJjkgEkY0Z8jIrfpsaQqXWiynNb4HHUBvadVQGdlHTLCmuvz57UAoTnmq8KVDK1xQ12z4nAB11S1qWHob8QG2uk5DdId9TNDWGik7JfN0+CgjO9zUnS8UJuGefj8OOwK/MVPmR9ItPUM42Tam0cEDWgeM1nVdIl5fLOfbZHwKLtD7UFnH8MyrRrwdSETFTJlWMLY93s0d6RQzi2+BVi8YYt6r00zQvc4GU6MmBk2LVpeCg7XOJkDTsP1c4NjL3/K9bmWB8ZyZLICMd501nb+j6FdCrhGpa/0V+jWFyMPO/WSDiHFiu/n+kUO2YQnRtu59ej30OAlJ5xKj68fA8hUzSX2aCe8CkCFJZ2mOvb8iByrArxRZKDg4Y2OOJ8I7quAxXvEG+5RKgPW3MTqpWrW/9RMUaRnO6PaaMXSxyklimArn6/CcSGFUGP6KPo502eVZJC6fMgc2KRmnNDRHFfFRv/zDVbno6eSRR1NDAr7l27PiCANh8tHEkBAznWA7T2D0RoOX+WaXqLI0buAiBaUoI0r1IRcy+cabuEglD0YgEtIyfKw+3Kl0YrnGhihwUTA9DHX3BxvoA2mMqALN366eTt6fCUGf0zwM7OICSsinn9h2MZzuviMtoHOvt6mnK+glF2QTviZ/ZKwJBwLoaQgZ7syn9+3P8cMk3KvTnoRnk5qghfSPzsA9ICPmszy4rubx/xKJbTnWht53nAWgKtF3RNa3DzOEJ5ydHZ8hkV8L4/zXnUdOPALJs6/60fT9q05yYgfUkZs0qBH0tR2uuMEsZ0YZ9yrYrylGJm6Y5EXlzszp4oi2lkSoQA5NH8ktLMKbc1a1K1DX8ujQJ5kyI0WIHP82bTiSAu4A2s6YkjYW+071IVD6UwNC4w/GBraEcfvNOGhwNgETeqsKqBP0K3qgo5k58t6OixB7HDjLXFnOdvw5jowvTgMx259CCmCWaeg9VEHQzM1kIEGU2FEPiYLIO4BvNhoAPmap56W/sH6n1EgbWxI0TaMGa2EPPoK2TmmbLayx0CtdlZDEfO4jrO44lIeJ1+3IOL4eTQoGEFtJumqGcPTzqrV86IeJGYY7m/X10xVYqoli9KKZEWqRENduHVbTiL6v+BTAzV3D7R9wDDxZh/2DMOJRAAcsYR3owRpnH95hz+BEqaVhIx+bZ2ci6C0WVhzXi7lB+5yA2cwx9OqnSPimvwCcdlvVS1z5LHtkuYZLgZTKE5hBDs9FQR9RvWOdFaOqxYSjhXDuvQCaydBLEHIwdkW5aq/KJ6f8qJwrbC8lZQIUuDsb6lG4MHlbdOXlp7zjD2Kno2q2iN7M5RBnRWMJbCYfRa0/Kq6T7yHqR76kfnpjDk1O5nAIwKvCb83ACO8ZVG9rRaTnp4CW23d2/Hml2CIGxWfa67EVp83rnYqlspspNryr6tEG8oihDQbXKhvm8ldoVF3CezKXWxNWGe7FovVZ6XX22XAyGmtigQ+hj3vRGBpdBegdjpM9FkD81/jX7gpYZS3ZhHEOvvfDcb/mi8AvtjtNviS2ki6heERejSYdKyMhZbCIpK/pLn5uwGz5bQSK/Sg1BMhxyEfpTjghfJG2xMr6jnY4d0MQycr2EJmaCYnht9s5MboCyUoCnjLeFaPY39j7ELynMooNTQLNqXtImyCs2Bsw4JxdwFe0QMU3TUV3zSZsAHGC4Hc2L6SioM0QqQkFpSo09tiO9z/vZU8ISHMyZpexp3dI07Mi15piy0NDZj30OsI02H4kD8NE+1Sb9CZx9Ll4up0wjHC/pTu5yJ9dPQh7PE+C2fdM6Q1Ecinip14Cst9xsizYkrEd5B5QGUmrusCvUxc3EAIZK13q3l8mL8XKX5IYotVjeBxQQOpEwYVL+7VGv6SKi8Bx9/JcCF/r/wI4KZGFeBbMCu+nMeldU6at362sPwynjdHlEqV23grmAIbneuOg9HVInWTsqvvMgaxHAP6CbM6SUTyEKwevf14bI1BC1bzEtrczesNGNkjR0QxT83UOwy38SuOuviKGc//d/KKwwyccrVsVwiZyCnG5kB9fvkX8jj5BBiTxIBd1hjpP2tS2zIff/LxyujY+frRZd6FAqYFU/hqfz0EKhnHEtH5rt31GGmf8Zg2yrQDpeV9nLUXEj+QALnJnQeeZY
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-7.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-7.exe /rawdata=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
C:\WINDOWS\tasks\385121a1-8458-48be-b8d7-c746758be49d.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\385121a1-8458-48be-b8d7-c746758be49d.exe 002173 18644921D61947CEB6028CB112DBB7AFIE 63285 1417333754 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 TotalPlusHD-3.1V30.11
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\da44d4ee-2e5e-4505-b8f7-27a9d8132f73.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\da44d4ee-2e5e-4505-b8f7-27a9d8132f73.exe /agentregpath='TotalPlusHD-3.1V30.11' /appid=63285 /srcid='002173' /subid='0' /zdata='0' /bic=18644921D61947CEB6028CB112DBB7AFIE /verifier=60d803f9823b60f52513fd330767f255 /installerversion=1_35_11_26 /installationtime=1417333754 /statsdomain=http://stats.newstaticclientstack.com /errorsdomain=http://errors.newstaticclientstack.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newstaticclientstack.com /runfrom='task' /externallog=''
C:\WINDOWS\tasks\HPCeeScheduleForMartin.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForMartin (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-25 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-25 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-25 2916152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-07-21 1425408]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe [2014-12-02 21720]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SeznamInstall-uninstall:af44b6eb921263aab3745f0f51f99e97"=C:\Users\Martin\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2014-12-05 534528]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-08 642216]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-07-09 580512]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-25 5226600]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-09-03 364544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-12-11 20:27:15 ----D---- C:\rsit
2014-12-11 16:49:53 ----SHD---- C:\Config.Msi
2014-12-01 11:47:53 ----A---- C:\DelFix.txt
2014-11-30 08:50:36 ----D---- C:\Program Files (x86)\2eb628ee-7327-4304-bd33-0abb95505b88
2014-11-30 08:49:29 ----D---- C:\Program Files (x86)\globalUpdate
2014-11-30 08:49:25 ----D---- C:\Program Files (x86)\TotalPlusHD-3.1V30.11
2014-11-30 08:47:17 ----D---- C:\Users\Martin\AppData\Roaming\Opera Software
2014-11-28 16:49:17 ----N---- C:\WINDOWS\KMSEmulator.exe
2014-11-25 22:13:52 ----SHD---- C:\$RECYCLE.BIN
2014-11-25 22:09:38 ----D---- C:\WINDOWS\Temp
2014-11-25 20:16:07 ----D---- C:\Program Files\trend micro
2014-11-25 20:12:55 ----D---- C:\WINDOWS\SYSWOW64\vbox
2014-11-25 20:12:55 ----D---- C:\WINDOWS\system32\vbox
2014-11-25 20:04:37 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-11-25 20:04:25 ----A---- C:\WINDOWS\avastSS.scr
2014-11-25 18:15:44 ----A---- C:\autoexec.bat
2014-11-21 10:19:10 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-11-20 16:57:55 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2014-11-20 16:57:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-11-20 16:57:55 ----A---- C:\WINDOWS\system32\pku2u.dll
2014-11-20 16:57:55 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-11-19 04:26:34 ----A---- C:\WINDOWS\system32\FM20.DLL
2014-11-13 12:28:21 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-13 12:28:19 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-13 12:28:18 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-13 12:28:17 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-13 12:28:15 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-13 12:28:09 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-13 12:28:09 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-13 12:27:33 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-13 12:27:33 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-13 12:27:32 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-13 12:27:31 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-13 12:27:31 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-13 12:27:30 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-13 12:27:30 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-13 12:27:30 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-13 12:27:23 ----A---- C:\WINDOWS\system32\devinv.dll
2014-11-13 12:27:23 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-11-13 12:27:22 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-11-13 12:27:22 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-11-13 12:27:21 ----A---- C:\WINDOWS\system32\aepic.dll
2014-11-13 11:24:05 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-13 11:24:05 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-13 11:24:04 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-13 11:24:04 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-13 11:24:03 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-13 11:23:27 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-13 11:23:26 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-13 11:23:26 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-13 11:23:26 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-13 11:23:25 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-13 11:23:25 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-13 11:23:24 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-13 11:23:24 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-13 11:23:23 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-13 11:23:23 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-13 11:23:22 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-13 11:23:22 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-13 11:23:21 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-13 11:22:01 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-13 11:22:01 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-13 11:21:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-13 11:21:53 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-13 11:21:52 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-13 11:21:52 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-13 11:21:50 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-13 11:21:50 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-13 11:21:50 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-13 11:21:50 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-13 11:21:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-13 11:21:50 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-13 11:21:49 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-13 11:20:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-13 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 20:10:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 20:09:55 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 20:09:42 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 20:09:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 20:09:35 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 20:09:34 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 20:09:33 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 20:09:32 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 20:09:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 20:09:31 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 20:09:31 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 20:09:30 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 20:09:28 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 20:09:28 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 20:09:28 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 20:09:27 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 20:09:26 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 20:09:26 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 20:09:26 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 20:09:25 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 20:09:25 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 20:09:24 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 20:09:24 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 20:09:24 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 20:09:24 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 20:09:23 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 20:09:22 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 20:09:22 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 20:09:22 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 20:09:21 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 20:09:21 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 20:09:20 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 20:09:18 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 20:09:16 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 20:09:16 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 20:09:16 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 20:09:16 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 20:09:13 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 20:09:13 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 20:09:13 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 20:09:13 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 20:09:13 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 20:09:12 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 20:09:12 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 20:09:12 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 20:09:12 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 20:09:12 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 20:09:11 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 20:09:11 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 20:09:11 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 20:07:54 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 20:07:53 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 20:07:48 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 20:07:46 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 20:07:46 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 20:07:45 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 20:07:45 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-12 20:07:34 ----A---- C:\WINDOWS\system32\shell32.dll
2014-11-12 20:07:31 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 20:07:29 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-11-12 20:07:26 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 20:07:25 ----A---- C:\WINDOWS\system32\twinui.dll
2014-11-12 20:07:24 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-11-12 20:07:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 20:07:23 ----A---- C:\WINDOWS\system32\localspl.dll
2014-11-12 20:07:22 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 20:07:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-11-12 20:07:20 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-11-12 20:07:20 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-11-12 20:07:20 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-11-12 20:07:19 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-11-12 20:07:18 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-11-12 20:07:18 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 20:07:17 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-11-12 20:07:17 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-11-12 20:07:16 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-11-12 20:07:15 ----A---- C:\WINDOWS\system32\untfs.dll
2014-11-12 20:07:15 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-11-12 20:07:14 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-11-12 20:07:13 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 20:07:12 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 20:07:11 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
======List of files/folders modified in the last 1 month======
2014-12-11 20:03:47 ----D---- C:\WINDOWS\Prefetch
2014-12-11 20:00:03 ----D---- C:\WINDOWS\system32\sru
2014-12-11 19:24:24 ----D---- C:\WINDOWS\Microsoft.NET
2014-12-11 17:21:05 ----D---- C:\WINDOWS\system32\config
2014-12-11 17:10:13 ----D---- C:\WINDOWS\WinSxS
2014-12-11 17:10:04 ----D---- C:\WINDOWS\CbsTemp
2014-12-11 17:07:54 ----SHD---- C:\WINDOWS\Installer
2014-12-11 17:07:51 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 17:00:29 ----D---- C:\WINDOWS\system32\MRT
2014-12-11 17:00:25 ----A---- C:\WINDOWS\system32\MRT.exe
2014-12-11 16:56:38 ----RD---- C:\WINDOWS\System32
2014-12-11 16:48:02 ----SHD---- C:\System Volume Information
2014-12-10 19:36:53 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2014-12-10 19:33:51 ----A---- C:\WINDOWS\SYSWOW64\LOCALSERVICE.INI
2014-12-10 19:33:49 ----A---- C:\WINDOWS\SYSWOW64\LOCALDEVICE.INI
2014-12-09 19:07:25 ----D---- C:\WINDOWS\SysWOW64
2014-12-09 19:07:24 ----D---- C:\WINDOWS\Tasks
2014-12-09 19:05:08 ----HD---- C:\Program Files\WindowsApps
2014-12-09 19:04:01 ----D---- C:\WINDOWS\AppReadiness
2014-12-07 17:17:33 ----D---- C:\Windows
2014-12-05 15:29:56 ----A---- C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-12-05 04:22:31 ----D---- C:\Program Files (x86)\Seznam.cz
2014-12-05 04:20:55 ----RD---- C:\Program Files (x86)
2014-12-05 04:19:03 ----D---- C:\Program Files (x86)\Steam
2014-12-05 04:10:30 ----D---- C:\Program Files (x86)\Common Files
2014-12-05 04:03:06 ----D---- C:\WINDOWS\system32\Tasks
2014-12-05 03:07:37 ----D---- C:\WINDOWS\system32\catroot2
2014-12-04 21:58:35 ----D---- C:\WINDOWS\Inf
2014-12-02 22:27:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-01 11:50:09 ----D---- C:\Program Files\CCleaner
2014-12-01 09:21:13 ----D---- C:\WINDOWS\system32\wdi
2014-12-01 09:15:57 ----D---- C:\WINDOWS\system32\drivers\etc
2014-12-01 09:15:56 ----HD---- C:\ProgramData
2014-12-01 09:15:56 ----D---- C:\Program Files
2014-12-01 09:13:29 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2014-11-30 08:50:54 ----D---- C:\Program Files (x86)\Adobe
2014-11-28 18:38:04 ----D---- C:\Program Files (x86)\PokerStars
2014-11-26 00:33:00 ----D---- C:\WINDOWS\debug
2014-11-25 20:07:47 ----D---- C:\WINDOWS\system32\drivers
2014-11-25 20:05:29 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-25 20:05:04 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-25 18:45:15 ----SD---- C:\Users\Martin\AppData\Roaming\Microsoft
2014-11-23 15:37:25 ----D---- C:\WINDOWS\system32\NDF
2014-11-22 19:44:24 ----D---- C:\WINDOWS\system32\catroot
2014-11-21 15:39:18 ----D---- C:\WINDOWS\rescache
2014-11-21 14:11:43 ----RSD---- C:\WINDOWS\assembly
2014-11-21 10:15:15 ----D---- C:\Program Files\Windows Defender
2014-11-21 10:15:15 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-21 10:15:14 ----D---- C:\WINDOWS\system32\wbem
2014-11-21 10:15:14 ----D---- C:\WINDOWS\system32\en-GB
2014-11-21 10:15:14 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-21 10:15:10 ----SD---- C:\WINDOWS\system32\CompatTel
2014-11-21 10:15:10 ----RD---- C:\WINDOWS\ToastData
2014-11-21 10:15:09 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-11-21 10:15:09 ----D---- C:\WINDOWS\apppatch
2014-11-21 10:15:08 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-11-21 10:15:08 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-21 10:15:08 ----D---- C:\WINDOWS\system32\en-US
2014-11-21 10:15:07 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-21 10:15:07 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-21 10:15:06 ----D---- C:\WINDOWS\system32\migration
2014-11-21 10:15:05 ----D---- C:\Program Files\Internet Explorer
2014-11-20 17:08:17 ----RSD---- C:\WINDOWS\Fonts
2014-11-20 16:46:42 ----D---- C:\Program Files (x86)\4game
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-11-25 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-11-25 267632]
R0 hpdskflt;@oem16.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-11-25 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-11-25 1050432]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-11-25 436624]
R1 dtsoftbus01;@oem18.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-05-10 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-11-25 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-11-25 83280]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-11-25 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-25 271752]
R3 Accelerometer;@oem16.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-06-09 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-06-09 626688]
R3 athur;@oem14.inf,%ATHR.Service.DispName%;Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athurx.sys [2010-01-05 1847296]
R3 AtiHDAudioService;@oem11.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-07-18 98472]
R3 BtAudioBusSrv;@oem7.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-03-18 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-08-14 48736]
R3 netr28x;@oem19.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-03-18 167424]
R3 RSBASTOR;@oem25.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\WINDOWS\system32\DRIVERS\RtsBaStor.sys [2012-07-31 294544]
R3 rtbth;@oem13.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem24.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2012-07-31 690832]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2012-07-21 540160]
R3 SynTP;@oem23.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-25 448312]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-06-19 57000]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-07-24 79528]
S0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-07-24 26280]
S2 APXACC;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2012-06-23 199008]
S3 androidusb;@oem29.inf,%androidusb.SvcDesc%;ADB Interface Driver; C:\WINDOWS\System32\Drivers\androidusb.sys [2010-04-29 32768]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem30.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-25 41272]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2012-08-25 43832]
S3 ssudmdm;@oem32.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 4game-service;4game-service; C:\Program Files (x86)\4game\3.2.0.238\4game-service.exe [2014-11-13 1307648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-06-09 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-08-08 361984]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-25 50344]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-09-03 1602560]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;@oem16.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-24 31040]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-07-09 35232]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2012-07-21 321536]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-25 4012248]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-09-03 138752]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-03 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-03 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 50942144]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-04-23 572096]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 w3logsvc;@%windir%\system32\inetsrv\iisres.dll,-30014; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 57856]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
1.Jedná se o program TotalPlusHD, který jsem odinstaloval pomocí CCleaneru, ale podle správce úloh se mi ten program pořád v počítači spouští a nadále ho už nevidím v žádném programu na odinstalovaní.
2. a můj druhý problém je v prohlížeči Chrome, kde se mi stále objevují prázdná okna v rozích nebo mi vyskakuje nechtěná reklama. Při delším běhu mi prohlížeč dokonce spadne s tím, že program přestal pracovat. to mi způsobuje zase nějaký Cinema-Plus-1.8c
- chrome.jpg (118.42 KiB) Zobrazeno 1463 x
Logfile of random's system information tool 1.10 (written by random/random)
Run by Martin at 2014-12-11 20:27:15
Microsoft Windows 8.1
System drive C: has 22 GB (18%) free of 122 GB
Total RAM: 3546 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:27:25, on 11. 12. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Users\Martin\Downloads\MRDownloader.exe
C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.230\deploy\LoLLauncher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.14\deploy\LoLPatcher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.120\deploy\LolClient.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:af44b6eb921263aab3745f0f51f99e97] "C:\Users\Martin\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Martin\AppData\Roaming\Seznam.cz"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: 4game-service - Innova Co S.a r.l. - C:\Program Files (x86)\4game\3.2.0.238\4game-service.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem16.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11502 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {2FCF572C-81C9-44B2-8115-5DBB1BBF69FF}
"C:\Program Files (x86)\4game\3.2.0.238\4game-service.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
dashost.exe {781e8ea3-1469-4fcc-af1a97264bbf75d0}
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe"
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
ngservice.exe pipeserver
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\Explorer.EXE
taskhostex.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Users\Martin\Downloads\MRDownloader.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
taskhost.exe
"C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe"
"C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe" updateandrun lol_launcher LoLLauncher.exe
LoLLauncher.exe
"C:/Riot Games/League of Legends/RADS/projects/lol_patcher/releases/0.0.0.14/deploy/LoLPatcher.exe"
"C:/Riot Games/League of Legends/RADS/projects/lol_air_client/releases/0.0.1.120/deploy//LolClient.exe" -runtime .\ -nodebug META-INF\AIR\application.xml .\ -- 8393
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9223
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6848.0.536323285\1384834512" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,17,38 --gpu-vendor-id=0x1002 --gpu-device-id=0x990a --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.9001.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6848.2.534538744\583258204" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6848.3.1456358839\1085023828" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6848.5.1712415050\996201655" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="6848.10.662243476\2076047897" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-6.exe" /rawdata=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
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group7 pct:10g stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Bootstrap/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SHA1ToolbarUIJanuary2017/Warning/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_48/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_19/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="6848.44.592028914\893902563" /prefetch:673131151
C:\WINDOWS\system32\DllHost.exe /Processid:{76D0CB12-7604-4048-B83C-1005C7DDC503}
"C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe"
"C:\Users\Martin\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-1.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\TotalPlusHD-3.1V30.11-codedownloader.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-11.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-11.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-2.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-3.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-3.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-5.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-5.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-5_user.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-5.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-6.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-6.exe /rawdata=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
C:\WINDOWS\tasks\12a137b8-f9ad-4e08-85fd-7f50e18b898f-7.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\12a137b8-f9ad-4e08-85fd-7f50e18b898f-7.exe /rawdata=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
C:\WINDOWS\tasks\385121a1-8458-48be-b8d7-c746758be49d.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\385121a1-8458-48be-b8d7-c746758be49d.exe 002173 18644921D61947CEB6028CB112DBB7AFIE 63285 1417333754 93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 TotalPlusHD-3.1V30.11
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\da44d4ee-2e5e-4505-b8f7-27a9d8132f73.job - C:\Program Files (x86)\TotalPlusHD-3.1V30.11\da44d4ee-2e5e-4505-b8f7-27a9d8132f73.exe /agentregpath='TotalPlusHD-3.1V30.11' /appid=63285 /srcid='002173' /subid='0' /zdata='0' /bic=18644921D61947CEB6028CB112DBB7AFIE /verifier=60d803f9823b60f52513fd330767f255 /installerversion=1_35_11_26 /installationtime=1417333754 /statsdomain=http://stats.newstaticclientstack.com /errorsdomain=http://errors.newstaticclientstack.com /extensionname='Information' /torpedoiesleeps=1000 /torpedoieplugins=93-0,102-0,104-0,178-288,179-288,180-288,223-288,263-24 /monetizationdomain=http://logs.newstaticclientstack.com /runfrom='task' /externallog=''
C:\WINDOWS\tasks\HPCeeScheduleForMartin.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForMartin (null)
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-25 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-25 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-08-25 2916152]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-07-21 1425408]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\NCPluginUpdater.exe [2014-12-02 21720]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-11-21 7063832]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SeznamInstall-uninstall:af44b6eb921263aab3745f0f51f99e97"=C:\Users\Martin\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2014-12-05 534528]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-08-08 642216]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-07-09 580512]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-25 5226600]
"BtTray"=C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [2012-09-03 364544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-18 4171480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-12-11 20:27:15 ----D---- C:\rsit
2014-12-11 16:49:53 ----SHD---- C:\Config.Msi
2014-12-01 11:47:53 ----A---- C:\DelFix.txt
2014-11-30 08:50:36 ----D---- C:\Program Files (x86)\2eb628ee-7327-4304-bd33-0abb95505b88
2014-11-30 08:49:29 ----D---- C:\Program Files (x86)\globalUpdate
2014-11-30 08:49:25 ----D---- C:\Program Files (x86)\TotalPlusHD-3.1V30.11
2014-11-30 08:47:17 ----D---- C:\Users\Martin\AppData\Roaming\Opera Software
2014-11-28 16:49:17 ----N---- C:\WINDOWS\KMSEmulator.exe
2014-11-25 22:13:52 ----SHD---- C:\$RECYCLE.BIN
2014-11-25 22:09:38 ----D---- C:\WINDOWS\Temp
2014-11-25 20:16:07 ----D---- C:\Program Files\trend micro
2014-11-25 20:12:55 ----D---- C:\WINDOWS\SYSWOW64\vbox
2014-11-25 20:12:55 ----D---- C:\WINDOWS\system32\vbox
2014-11-25 20:04:37 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-11-25 20:04:25 ----A---- C:\WINDOWS\avastSS.scr
2014-11-25 18:15:44 ----A---- C:\autoexec.bat
2014-11-21 10:19:10 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-11-20 16:57:55 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2014-11-20 16:57:55 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-11-20 16:57:55 ----A---- C:\WINDOWS\system32\pku2u.dll
2014-11-20 16:57:55 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-11-19 04:26:34 ----A---- C:\WINDOWS\system32\FM20.DLL
2014-11-13 12:28:21 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-13 12:28:19 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-13 12:28:18 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-13 12:28:17 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-13 12:28:15 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-13 12:28:09 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-13 12:28:09 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-13 12:27:33 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-13 12:27:33 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-13 12:27:32 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-13 12:27:31 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-13 12:27:31 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-13 12:27:30 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-13 12:27:30 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-13 12:27:30 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-13 12:27:23 ----A---- C:\WINDOWS\system32\devinv.dll
2014-11-13 12:27:23 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-11-13 12:27:22 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-11-13 12:27:22 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-11-13 12:27:21 ----A---- C:\WINDOWS\system32\aepic.dll
2014-11-13 11:24:05 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-13 11:24:05 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-13 11:24:04 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-13 11:24:04 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-13 11:24:03 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-13 11:23:27 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-13 11:23:26 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-13 11:23:26 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-13 11:23:26 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-13 11:23:25 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-13 11:23:25 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-13 11:23:24 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-13 11:23:24 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-13 11:23:23 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-13 11:23:23 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-13 11:23:22 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-13 11:23:22 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-13 11:23:21 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-13 11:22:01 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-13 11:22:01 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-13 11:21:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-13 11:21:53 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-13 11:21:52 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-13 11:21:52 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-13 11:21:51 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-13 11:21:50 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-13 11:21:50 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-13 11:21:50 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-13 11:21:50 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-13 11:21:50 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-13 11:21:50 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-13 11:21:49 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-13 11:20:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-13 11:19:19 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 20:10:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 20:09:55 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 20:09:42 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 20:09:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 20:09:35 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 20:09:34 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 20:09:33 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 20:09:32 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 20:09:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 20:09:31 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 20:09:31 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 20:09:30 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 20:09:29 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 20:09:28 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 20:09:28 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 20:09:28 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 20:09:28 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 20:09:27 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 20:09:27 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 20:09:26 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 20:09:26 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 20:09:26 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 20:09:25 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 20:09:25 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 20:09:24 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 20:09:24 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 20:09:24 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 20:09:24 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 20:09:23 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 20:09:22 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 20:09:22 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 20:09:22 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 20:09:21 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 20:09:21 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 20:09:20 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 20:09:20 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 20:09:19 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 20:09:18 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 20:09:17 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 20:09:16 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 20:09:16 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 20:09:16 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 20:09:16 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 20:09:15 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 20:09:14 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 20:09:13 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 20:09:13 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 20:09:13 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 20:09:13 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 20:09:13 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 20:09:12 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 20:09:12 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 20:09:12 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 20:09:12 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 20:09:12 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 20:09:11 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 20:09:11 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 20:09:11 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 20:07:54 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 20:07:53 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 20:07:48 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 20:07:47 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-12 20:07:46 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 20:07:46 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 20:07:45 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 20:07:45 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-12 20:07:34 ----A---- C:\WINDOWS\system32\shell32.dll
2014-11-12 20:07:31 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 20:07:29 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-11-12 20:07:26 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 20:07:25 ----A---- C:\WINDOWS\system32\twinui.dll
2014-11-12 20:07:24 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-11-12 20:07:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 20:07:23 ----A---- C:\WINDOWS\system32\localspl.dll
2014-11-12 20:07:22 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 20:07:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-11-12 20:07:20 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-11-12 20:07:20 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-11-12 20:07:20 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-11-12 20:07:19 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-11-12 20:07:18 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-11-12 20:07:18 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 20:07:17 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-11-12 20:07:17 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-11-12 20:07:16 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-11-12 20:07:15 ----A---- C:\WINDOWS\system32\untfs.dll
2014-11-12 20:07:15 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-11-12 20:07:14 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-11-12 20:07:13 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 20:07:12 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 20:07:11 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
======List of files/folders modified in the last 1 month======
2014-12-11 20:03:47 ----D---- C:\WINDOWS\Prefetch
2014-12-11 20:00:03 ----D---- C:\WINDOWS\system32\sru
2014-12-11 19:24:24 ----D---- C:\WINDOWS\Microsoft.NET
2014-12-11 17:21:05 ----D---- C:\WINDOWS\system32\config
2014-12-11 17:10:13 ----D---- C:\WINDOWS\WinSxS
2014-12-11 17:10:04 ----D---- C:\WINDOWS\CbsTemp
2014-12-11 17:07:54 ----SHD---- C:\WINDOWS\Installer
2014-12-11 17:07:51 ----D---- C:\ProgramData\Microsoft Help
2014-12-11 17:00:29 ----D---- C:\WINDOWS\system32\MRT
2014-12-11 17:00:25 ----A---- C:\WINDOWS\system32\MRT.exe
2014-12-11 16:56:38 ----RD---- C:\WINDOWS\System32
2014-12-11 16:48:02 ----SHD---- C:\System Volume Information
2014-12-10 19:36:53 ----A---- C:\WINDOWS\SYSWOW64\bscs.ini
2014-12-10 19:33:51 ----A---- C:\WINDOWS\SYSWOW64\LOCALSERVICE.INI
2014-12-10 19:33:49 ----A---- C:\WINDOWS\SYSWOW64\LOCALDEVICE.INI
2014-12-09 19:07:25 ----D---- C:\WINDOWS\SysWOW64
2014-12-09 19:07:24 ----D---- C:\WINDOWS\Tasks
2014-12-09 19:05:08 ----HD---- C:\Program Files\WindowsApps
2014-12-09 19:04:01 ----D---- C:\WINDOWS\AppReadiness
2014-12-07 17:17:33 ----D---- C:\Windows
2014-12-05 15:29:56 ----A---- C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-12-05 04:22:31 ----D---- C:\Program Files (x86)\Seznam.cz
2014-12-05 04:20:55 ----RD---- C:\Program Files (x86)
2014-12-05 04:19:03 ----D---- C:\Program Files (x86)\Steam
2014-12-05 04:10:30 ----D---- C:\Program Files (x86)\Common Files
2014-12-05 04:03:06 ----D---- C:\WINDOWS\system32\Tasks
2014-12-05 03:07:37 ----D---- C:\WINDOWS\system32\catroot2
2014-12-04 21:58:35 ----D---- C:\WINDOWS\Inf
2014-12-02 22:27:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-01 11:50:09 ----D---- C:\Program Files\CCleaner
2014-12-01 09:21:13 ----D---- C:\WINDOWS\system32\wdi
2014-12-01 09:15:57 ----D---- C:\WINDOWS\system32\drivers\etc
2014-12-01 09:15:56 ----HD---- C:\ProgramData
2014-12-01 09:15:56 ----D---- C:\Program Files
2014-12-01 09:13:29 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2014-11-30 08:50:54 ----D---- C:\Program Files (x86)\Adobe
2014-11-28 18:38:04 ----D---- C:\Program Files (x86)\PokerStars
2014-11-26 00:33:00 ----D---- C:\WINDOWS\debug
2014-11-25 20:07:47 ----D---- C:\WINDOWS\system32\drivers
2014-11-25 20:05:29 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-25 20:05:04 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-25 18:45:15 ----SD---- C:\Users\Martin\AppData\Roaming\Microsoft
2014-11-23 15:37:25 ----D---- C:\WINDOWS\system32\NDF
2014-11-22 19:44:24 ----D---- C:\WINDOWS\system32\catroot
2014-11-21 15:39:18 ----D---- C:\WINDOWS\rescache
2014-11-21 14:11:43 ----RSD---- C:\WINDOWS\assembly
2014-11-21 10:15:15 ----D---- C:\Program Files\Windows Defender
2014-11-21 10:15:15 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-21 10:15:14 ----D---- C:\WINDOWS\system32\wbem
2014-11-21 10:15:14 ----D---- C:\WINDOWS\system32\en-GB
2014-11-21 10:15:14 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-21 10:15:10 ----SD---- C:\WINDOWS\system32\CompatTel
2014-11-21 10:15:10 ----RD---- C:\WINDOWS\ToastData
2014-11-21 10:15:09 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-11-21 10:15:09 ----D---- C:\WINDOWS\apppatch
2014-11-21 10:15:08 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-11-21 10:15:08 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-21 10:15:08 ----D---- C:\WINDOWS\system32\en-US
2014-11-21 10:15:07 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-21 10:15:07 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-21 10:15:06 ----D---- C:\WINDOWS\system32\migration
2014-11-21 10:15:05 ----D---- C:\Program Files\Internet Explorer
2014-11-20 17:08:17 ----RSD---- C:\WINDOWS\Fonts
2014-11-20 16:46:42 ----D---- C:\Program Files (x86)\4game
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-11-25 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-11-25 267632]
R0 hpdskflt;@oem16.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-11-25 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-11-25 1050432]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-11-25 436624]
R1 dtsoftbus01;@oem18.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-05-10 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-11-25 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-11-25 83280]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-11-25 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-25 271752]
R3 Accelerometer;@oem16.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-06-09 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-06-09 626688]
R3 athur;@oem14.inf,%ATHR.Service.DispName%;Atheros AR9271 Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\athurx.sys [2010-01-05 1847296]
R3 AtiHDAudioService;@oem11.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2012-07-18 98472]
R3 BtAudioBusSrv;@oem7.inf,%SvcDesc%;Ralink Bluetooth Audio Bus Service; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [2012-06-15 23136]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthL2caScoIfSrv;Bluetooth Profile Interface Driver Service; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [2012-07-19 56904]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-03-18 81920]
R3 btUrbFilterDrv;IVT URB Bluetooth Filter Driver Service; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [2012-08-14 48736]
R3 netr28x;@oem19.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-03-18 167424]
R3 RSBASTOR;@oem25.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\WINDOWS\system32\DRIVERS\RtsBaStor.sys [2012-07-31 294544]
R3 rtbth;@oem13.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem24.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2012-07-31 690832]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [2012-07-21 540160]
R3 SynTP;@oem23.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-25 448312]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-06-19 57000]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-07-24 79528]
S0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-07-24 26280]
S2 APXACC;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2012-06-23 199008]
S3 androidusb;@oem29.inf,%androidusb.SvcDesc%;ADB Interface Driver; C:\WINDOWS\System32\Drivers\androidusb.sys [2010-04-29 32768]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-07-24 1200640]
S3 dg_ssudbus;@oem30.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 SmbDrv;SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [2012-08-25 41272]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2012-08-25 43832]
S3 ssudmdm;@oem32.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 4game-service;4game-service; C:\Program Files (x86)\4game\3.2.0.238\4game-service.exe [2014-11-13 1307648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-06-09 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-08-08 361984]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-25 50344]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [2012-09-03 1602560]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2013-11-04 92160]
R2 hpsrv;@oem16.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-24 31040]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-07-09 35232]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2012-07-21 321536]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-25 4012248]
R3 BsHelpCS;BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [2012-09-03 138752]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2013-05-13 1129760]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-03 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-03 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-18 50942144]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-04-23 572096]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 w3logsvc;@%windir%\system32\inetsrv\iisres.dll,-30014; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S4 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 57856]
S4 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
-----------------EOF-----------------
