Prosím o pomoc
Napsal: 14 úno 2015 19:43
- Nákaza 1.jpg (127.1 KiB) Zobrazeno 1664 x
Jde o svislý panel vlevo, dále o ustavičnou instalaci Adobe Flash, o vyskakující reklamy Alibaby a spol.
Zkusil jsem Antispyware, CCleaner, Avast ... a nic. Odinstaloval jsem ten Positive Finds, ale ta lišta vlevo zůstala. Tak jsem spáchal tenhle log a snad to k něčemu bude. Díky moc za pomoc. Mojda
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mojda at 2015-02-14 19:20:48
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 6 GB (7%) free of 93 GB
Total RAM: 5055 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:20:56, on 14.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\Windows\system32\PrintDisp.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Mojda.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [Zoner Photo Studio Service 16] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: AVerUpdateServer - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Printer Control - Unknown owner - C:\Windows\system32\PrintCtrl.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10104 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\PrintCtrl.exe
"PrintDisp.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"taskhost.exe"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4036.0.2046435475\397339946" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,18,39 --gpu-vendor-id=0x1002 --gpu-device-id=0x7280 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.56.1.16 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_08/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/Control/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4036.12.110081353\479473827" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/MaterialDesignNTP/Enabled/NewProfileManagement/NewAvatarMenu/OmniboxBundledExperimentV1/StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/Disabled/RememberCertificateErrorDecisions/Default/SPDY/Spdy4Enabled-default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_08/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/Control/VoiceTrigger/Install/WebRTC-IPv6Default/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="4036.30.49020783\357905750" /prefetch:673131151
"E:\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 5b788177-1c7e-4293-82da-66ebfd0c3ed3.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:5b788177-1c7e-4293-82da-66ebfd0c3ed3
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task bfc88b0f-055b-4ab1-a1c9-ec039b6b5b93.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:bfc88b0f-055b-4ab1-a1c9-ec039b6b5b93
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-02-05 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-22 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-02-05 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-22 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"AutoKMS"=C:\Windows\AutoKMS.exe [2013-09-08 615936]
"PrintDisp"=C:\Windows\system32\PrintDisp.exe [2012-10-29 870400]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-12-15 478984]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]
"Zoner Photo Studio Service 16"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
"AdobeBridge"= []
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2015-01-22 7780120]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2009-07-01 37888]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-02-05 5227112]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-02-14 19:20:48 ----D---- C:\rsit
2015-02-14 19:20:48 ----D---- C:\Program Files\trend micro
2015-02-14 18:41:47 ----D---- C:\Users\Mojda\AppData\Roaming\SUPERAntiSpyware.com
2015-02-14 18:40:37 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2015-02-14 18:40:37 ----D---- C:\Program Files\SUPERAntiSpyware
2015-02-13 16:03:35 ----D---- C:\Users\Mojda\AppData\Roaming\ProgSense
2015-02-13 16:00:34 ----D---- C:\Users\Mojda\AppData\Roaming\GrabPro
2015-02-13 16:00:34 ----D---- C:\downloads
2015-02-13 15:59:15 ----D---- C:\Users\Mojda\AppData\Roaming\Orbit
2015-02-13 14:49:03 ----D---- C:\Users\Mojda\AppData\Roaming\RHEng
2015-02-11 20:57:34 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-02-11 20:57:34 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-02-11 20:57:34 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 20:57:33 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-11 14:19:05 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 14:19:05 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 14:19:05 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 14:19:05 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 14:19:05 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 14:19:05 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 14:19:04 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 14:19:03 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 14:18:49 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 14:18:48 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-02-11 14:18:47 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-02-11 14:18:47 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 14:18:46 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-02-11 14:18:46 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 14:18:46 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 14:18:45 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-02-11 14:18:45 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-02-11 14:18:45 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 14:18:45 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 14:18:44 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-02-11 14:18:44 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-02-11 14:18:44 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 14:18:13 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-02-11 14:18:12 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-02-11 14:18:12 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-02-11 14:18:12 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-02-11 14:18:12 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 14:18:12 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 14:18:11 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-02-11 14:18:11 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-02-11 14:18:11 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-11 14:18:11 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-02-11 14:18:11 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-02-11 14:18:11 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 14:18:11 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 14:18:11 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 14:18:10 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-02-11 14:18:09 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-02-11 14:18:09 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-02-11 14:18:09 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 14:18:08 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-02-11 14:18:08 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-02-11 14:18:08 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-02-11 14:18:08 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 14:18:08 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 14:18:07 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-02-11 14:18:07 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-02-11 14:18:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 14:18:07 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 14:18:07 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 14:18:06 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-02-11 14:18:06 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 14:18:06 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 14:18:05 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 14:18:04 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-02-11 14:18:04 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-02-11 14:18:03 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-02-11 14:18:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-02-11 14:18:03 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 14:18:03 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 14:18:02 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 14:18:02 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 14:18:02 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 14:18:01 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 14:18:01 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 14:18:00 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 14:18:00 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 14:17:59 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 14:17:59 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 14:17:58 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 03:05:16 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 03:05:15 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-02-11 03:04:45 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 03:04:45 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 03:04:44 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-02-11 03:04:44 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 03:04:44 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 03:04:44 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 03:04:44 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 03:04:44 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 03:04:43 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-02-11 03:04:43 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-02-11 03:04:43 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-02-11 03:04:43 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-02-11 03:04:43 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-02-11 03:04:43 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 03:04:43 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 03:04:43 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 03:04:43 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 03:04:43 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 03:04:30 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-02-11 03:04:30 ----A---- C:\Windows\system32\wintrust.dll
2015-02-11 03:04:30 ----A---- C:\Windows\system32\cryptsvc.dll
2015-02-11 03:04:30 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 03:04:29 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-02-11 03:04:29 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-02-11 03:04:22 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-02-11 03:04:22 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 03:03:59 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-02-11 03:03:59 ----A---- C:\Windows\system32\scesrv.dll
2015-02-11 03:03:47 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 03:03:46 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-02-11 03:03:45 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-02-11 03:03:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-02-11 03:03:44 ----A---- C:\Windows\system32\srcore.dll
2015-02-11 03:03:44 ----A---- C:\Windows\system32\srclient.dll
2015-02-11 03:03:44 ----A---- C:\Windows\system32\rstrui.exe
2015-02-11 03:03:14 ----A---- C:\Windows\system32\win32k.sys
2015-02-08 18:49:53 ----D---- C:\Program Files (x86)\Atari
2015-02-05 08:41:58 ----D---- C:\Windows\SYSWOW64\vbox
2015-02-05 08:41:58 ----D---- C:\Windows\system32\vbox
2015-02-05 08:37:13 ----A---- C:\Windows\system32\aswBoot.exe
2015-02-05 08:37:09 ----A---- C:\Windows\avastSS.scr
2015-01-20 16:48:33 ----D---- C:\Users\Mojda\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2015-01-20 09:54:03 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2015-01-20 09:31:56 ----D---- C:\Program Files\Adobe
2015-01-20 09:28:36 ----D---- C:\Program Files\Common Files\Adobe
2015-01-17 08:47:06 ----D---- C:\Program Files (x86)\Star Stable Entertainment AB
======List of files/folders modified in the last 1 month======
2015-02-14 19:20:52 ----D---- C:\Windows\Temp
2015-02-14 19:20:48 ----D---- C:\Program Files
2015-02-14 18:41:49 ----D---- C:\Windows\Tasks
2015-02-14 18:41:49 ----D---- C:\Windows\system32\Tasks
2015-02-14 18:41:47 ----HD---- C:\ProgramData
2015-02-14 18:30:29 ----D---- C:\Program Files (x86)\Bandicam
2015-02-14 17:18:08 ----D---- C:\Windows\system32\config
2015-02-14 17:06:56 ----D---- C:\Program Files (x86)\SpeedFan
2015-02-14 17:00:23 ----D---- C:\Program Files (x86)
2015-02-14 16:59:57 ----SHD---- C:\System Volume Information
2015-02-14 16:58:47 ----D---- C:\Windows\SysWOW64
2015-02-14 16:58:47 ----D---- C:\Windows\system32\drivers
2015-02-14 16:58:47 ----D---- C:\Windows\System32
2015-02-14 16:52:59 ----D---- C:\Program Files (x86)\Common Files
2015-02-13 16:00:17 ----D---- C:\Users\Mojda\AppData\Roaming\OpenCandy
2015-02-13 15:46:59 ----D---- C:\Users\Mojda\AppData\Roaming\YouTube Downloader
2015-02-13 14:49:22 ----D---- C:\Program Files (x86)\Youtube Downloader HD
2015-02-13 11:46:34 ----D---- C:\Windows\Prefetch
2015-02-12 12:38:28 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-11 21:10:33 ----D---- C:\Windows\winsxs
2015-02-11 21:10:28 ----D---- C:\Windows\SYSWOW64\en-US
2015-02-11 21:10:28 ----D---- C:\Windows\system32\en-US
2015-02-11 19:18:32 ----D---- C:\Windows\system32\catroot2
2015-02-11 19:12:18 ----SD---- C:\Windows\system32\CompatTel
2015-02-11 19:12:18 ----D---- C:\Windows\system32\appraiser
2015-02-11 19:12:17 ----D---- C:\Windows\system32\cs-CZ
2015-02-11 19:12:16 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-02-11 19:12:16 ----D---- C:\Program Files\Internet Explorer
2015-02-11 19:12:13 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-11 03:09:26 ----D---- C:\Windows\system32\MRT
2015-02-11 03:02:56 ----D---- C:\Windows\system32\catroot
2015-02-11 03:01:19 ----A---- C:\Windows\system32\MRT.exe
2015-02-08 18:03:49 ----D---- C:\Windows\system32\NDF
2015-02-06 18:45:14 ----D---- C:\Users\Mojda\AppData\Roaming\Skype
2015-02-06 13:33:02 ----SHD---- C:\Windows\Installer
2015-02-05 17:06:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-02-05 08:37:12 ----D---- C:\Windows
2015-02-03 15:38:42 ----RD---- C:\Program Files (x86)\Skype
2015-02-03 15:38:35 ----D---- C:\ProgramData\Skype
2015-02-02 10:24:48 ----D---- C:\Windows\Microsoft.NET
2015-01-24 18:56:30 ----D---- C:\Users\Mojda\AppData\Roaming\BSplayer PRO
2015-01-22 06:24:51 ----D---- C:\ProgramData\Oracle
2015-01-22 06:24:45 ----D---- C:\Program Files (x86)\Java
2015-01-22 06:23:17 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-01-22 06:23:16 ----A---- C:\Windows\SYSWOW64\javaws.exe
2015-01-22 06:23:16 ----A---- C:\Windows\SYSWOW64\javaw.exe
2015-01-22 06:23:16 ----A---- C:\Windows\SYSWOW64\java.exe
2015-01-20 16:48:34 ----D---- C:\Users\Mojda\AppData\Roaming\Adobe
2015-01-20 09:32:52 ----D---- C:\ProgramData\Adobe
2015-01-20 09:32:06 ----D---- C:\Program Files (x86)\Adobe
2015-01-20 09:31:28 ----RSD---- C:\Windows\Fonts
2015-01-20 09:29:15 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-01-20 09:28:36 ----D---- C:\Program Files\Common Files
2015-01-18 13:49:34 ----D---- C:\TopCD
2015-01-18 09:41:31 ----D---- C:\Program Files (x86)\Wonderland Secret Worlds
2015-01-17 08:47:05 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-02-05 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-02-05 267632]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-09-14 560184]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-02-05 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-02-05 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-02-05 436624]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-02-05 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-02-05 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-02-05 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-02-05 271752]
R3 atikmdag;atikmdag; C:\Windows\system32\drivers\atikmdag.sys [2009-07-13 5020672]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
S1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 agl0p2zs;agl0p2zs; C:\Windows\system32\drivers\agl0p2zs.sys []
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVerIT13x;AVerMedia A835B USB DVB-T; C:\Windows\System32\Drivers\AVerIT13x_x64.sys [2012-12-06 198272]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-02-05 50344]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2011-08-19 360448]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2011-04-01 403456]
R2 AVerUpdateServer;AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [2011-10-31 167936]
R2 Printer Control;Printer Control; C:\Windows\system32\PrintCtrl.exe [2012-10-21 121856]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-07 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-02-05 4012248]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-07 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-09-08 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
.
: