VIRY.CZ

zpomalene spusteni ntb a i pri vymazani a projeti stale vyskakuje v chrome "ad dealnodeal" okno


Logfile of random's system information tool 1.10 (written by random/random)
Run by Roman at 2015-04-25 22:17:01
Microsoft Windows 8.1
System drive C: has 681 GB (75%) free of 905 GB
Total RAM: 8053 MB (81% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:17:04, on 25. 4. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Fraps\fraps.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files\trend micro\Roman.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.seznam.cz
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [MuteSync] C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - Startup: Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.lnk = C:\ProgramData\{a42176fe-cc04-4a38-a421-176fecc0dbfb}\Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Startup: MIRC v7 38.lnk = C:\ProgramData\{d1c0346d-8c5b-75a0-d1c0-0346d8c5d1b6}\MIRC v7 38.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Clip image - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: New note - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: @oem73.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: CAM Service (CAMService) - Intel® Corporation - C:\Program Files\Intel\CAM\bin\CAMService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 12438 bytes

======Listing Processes======





wininit.exe


C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 930361080304
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {496d42ab-2616-4a80-9f68dde9594f23f2}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
ClassicStartMenu.exe -startup
C:\Fraps\fraps.exe
taskeng.exe {596B4164-5D94-4A8A-BC36-837F024797A8}
taskhostex.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000007c0
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
igfxEM.exe
igfxHK.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2e20a4d8-ec0c-41e3-9f4c-a5028720b8b6 -SystemEventPortName:HostProcess-fab74bf0-ef63-48c2-8661-2c96b1fe38f5 -IoCancelEventPortName:HostProcess-3d9a35c7-b38b-4920-bcb4-8829a625f900 -NonStateChangingEventPortName:HostProcess-071a19ec-ff56-46c6-9ced-41ecf90e504b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b57c8a3d-028f-4028-8750-9136ae93b270 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\servicing\TrustedInstaller.exe
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe"
"C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe"
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min

"C:\Fraps\fraps64.dat"

"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Users\Roman\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-07-27 12937872]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-07-10 1214608]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-08-16 665400]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-08-10 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-09-28 17079376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-09-28 191568]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2015-01-14 1565504]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2012-05-01 548864]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-07-26 508656]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"MuteSync"=C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe [2012-02-04 343040]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2015-01-14 311616]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-12-17 508800]
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2014-05-14 2534400]
"Avira Systray"=C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [2015-04-10 130048]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2015-03-24 726320]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.lnk - C:\ProgramData\{a42176fe-cc04-4a38-a421-176fecc0dbfb}\Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.exe
EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
MIRC v7 38.lnk - C:\ProgramData\{d1c0346d-8c5b-75a0-d1c0-0346d8c5d1b6}\MIRC v7 38.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.XVID"=xvidvfw.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-04-25 22:17:01 ----D---- C:\rsit
2015-04-25 22:17:01 ----D---- C:\Program Files\trend micro
2015-04-25 21:19:32 ----A---- C:\WINDOWS\system32\drivers\hitmanpro35.sys
2015-04-25 21:18:18 ----D---- C:\ProgramData\Hitman Pro
2015-04-25 21:07:30 ----D---- C:\ProgramData\HitmanPro
2015-04-23 21:40:48 ----D---- C:\Users\Roman\AppData\Roaming\Avira
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avnetflt.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2015-04-23 21:36:38 ----D---- C:\ProgramData\Avira
2015-04-23 21:36:38 ----D---- C:\Program Files (x86)\Avira
2015-04-21 08:26:41 ----D---- C:\Program Files (x86)\Burrrn
2015-04-16 22:26:28 ----RD---- C:\Program Files (x86)\Skype
2015-04-16 21:06:59 ----D---- C:\WINDOWS\system32\appraiser
2015-04-16 21:04:27 ----D---- C:\AdwCleaner
2015-04-16 20:38:33 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-04-16 20:38:33 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-04-16 20:38:32 ----A---- C:\WINDOWS\system32\tdh.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\wow64.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\tracerpt.exe
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\sechost.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-04-16 20:38:23 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-04-16 20:38:23 ----A---- C:\WINDOWS\system32\msctf.dll
2015-04-16 20:38:21 ----A---- C:\WINDOWS\system32\lsm.dll
2015-04-16 20:38:19 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-04-16 20:37:57 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-04-16 20:37:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-04-16 20:36:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-04-16 20:36:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-04-16 20:36:50 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-04-16 20:36:50 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-04-16 20:36:48 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\system32\wininet.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-04-16 20:36:46 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-04-16 20:36:46 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-04-16 20:36:46 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\jscript.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-04-16 20:29:06 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-04-16 20:29:05 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-04-16 20:29:05 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-04-16 20:29:05 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wups2.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wups.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-04-16 20:25:07 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-04-16 20:25:07 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-04-16 20:25:07 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-04-16 20:25:07 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\devinv.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\invagent.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\aepic.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-04-11 21:13:11 ----ASH---- C:\hiberfil.sys
2015-04-11 19:14:25 ----D---- C:\Program Files (x86)\Listen and Download Quran
2015-04-11 19:13:56 ----D---- C:\Program Files (x86)\QuieckuViewer
2015-04-11 19:13:04 ----D---- C:\Program Files (x86)\NiuCeOffers
2015-04-10 15:06:21 ----D---- C:\Users\Roman\AppData\Roaming\MyHeritage
2015-04-10 15:06:21 ----D---- C:\ProgramData\MyHeritage
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\PDFDocScout.DLL
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\PaintX.dll
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\ijl15.dll
2015-04-10 15:02:30 ----D---- C:\Users\Roman\AppData\Roaming\The Complete Genealogy Reporter - FTB
2015-04-10 15:02:30 ----A---- C:\WINDOWS\SYSWOW64\unicows.dll
2015-04-10 15:01:24 ----D---- C:\Program Files (x86)\MyHeritage
2015-04-10 14:58:20 ----D---- C:\Users\Roman\AppData\Roaming\Ancestry
2015-04-10 14:57:59 ----AD---- C:\Ancestry
2015-04-09 23:04:14 ----D---- C:\Program Files (x86)\Cisco
2015-04-09 22:19:30 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxTray.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxext.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxexps.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxCoIn_v4061.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2015-04-09 22:19:26 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2015-04-09 22:19:26 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2015-04-09 22:19:25 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\igdmd64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\drivers\igdkmd64.sys
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdde64.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdail64.dll
2015-04-09 22:19:22 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2015-04-09 22:19:21 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\Gfxv4_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\Gfxv2_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\drivers\IntcDAud.sys
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\difx64.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\CustomModeApp.exe
2015-04-09 22:17:04 ----D---- C:\ProgramData\IntelDLM
2015-04-09 22:10:50 ----D---- C:\Program Files (x86)\Intel Driver Update Utility
2015-04-09 22:10:42 ----D---- C:\ProgramData\Package Cache
2015-04-06 20:39:44 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-04-06 20:39:43 ----SD---- C:\WINDOWS\system32\GWX
2015-03-30 14:38:32 ----D---- C:\ProgramData\Aspell
2015-03-30 14:38:31 ----D---- C:\Users\Roman\AppData\Roaming\Iceni
2015-03-30 14:38:31 ----D---- C:\ProgramData\Iceni
2015-03-30 14:38:27 ----D---- C:\Users\Roman\AppData\Roaming\Aspell
2015-03-30 14:38:27 ----D---- C:\Program Files (x86)\Iceni

======List of files/folders modified in the last 1 month======

2015-04-25 22:17:02 ----D---- C:\WINDOWS\Temp
2015-04-25 22:17:01 ----RD---- C:\Program Files
2015-04-25 22:15:46 ----D---- C:\Users\Roman\AppData\Roaming\ClassicShell
2015-04-25 22:14:45 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-04-25 22:14:15 ----D---- C:\WINDOWS\system32\sru
2015-04-25 22:14:03 ----D---- C:\WINDOWS\system32\Tasks
2015-04-25 22:14:03 ----D---- C:\Fraps
2015-04-25 22:13:04 ----D---- C:\Windows
2015-04-25 21:47:28 ----D---- C:\WINDOWS\system32\drivers
2015-04-25 21:41:33 ----D---- C:\WINDOWS\Prefetch
2015-04-25 21:34:28 ----DC---- C:\WINDOWS\Panther
2015-04-25 21:34:28 ----D---- C:\WINDOWS\Inf
2015-04-25 21:33:13 ----D---- C:\Hry
2015-04-25 21:30:08 ----D---- C:\Users\Roman\AppData\Roaming\mIRC
2015-04-25 21:18:18 ----HD---- C:\ProgramData
2015-04-25 21:18:02 ----SHD---- C:\System Volume Information
2015-04-25 20:44:31 ----RD---- C:\Program Files (x86)
2015-04-23 22:44:20 ----RD---- C:\WINDOWS\System32
2015-04-23 22:44:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-04-23 21:41:05 ----D---- C:\Users\Roman\AppData\Roaming\Mozilla
2015-04-23 21:37:34 ----SHD---- C:\WINDOWS\Installer
2015-04-23 20:45:47 ----D---- C:\WINDOWS\system32\config
2015-04-20 21:09:27 ----D---- C:\WINDOWS\Microsoft.NET
2015-04-19 21:35:11 ----D---- C:\WINDOWS\system32\catroot2
2015-04-17 21:42:28 ----RSD---- C:\WINDOWS\assembly
2015-04-17 20:14:20 ----D---- C:\WINDOWS\AppReadiness
2015-04-17 20:14:19 ----HD---- C:\Program Files\WindowsApps
2015-04-17 20:04:37 ----D---- C:\WINDOWS\AppCompat
2015-04-17 20:02:47 ----D---- C:\WINDOWS\WinSxS
2015-04-16 23:00:35 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-04-16 23:00:35 ----D---- C:\WINDOWS\SysWOW64
2015-04-16 23:00:35 ----D---- C:\WINDOWS\system32\cs-CZ
2015-04-16 23:00:35 ----D---- C:\WINDOWS\apppatch
2015-04-16 23:00:35 ----D---- C:\Program Files\Internet Explorer
2015-04-16 22:27:22 ----D---- C:\WINDOWS\CbsTemp
2015-04-16 22:26:29 ----D---- C:\Program Files (x86)\Common Files
2015-04-16 22:26:27 ----D---- C:\ProgramData\Skype
2015-04-16 21:07:00 ----SD---- C:\WINDOWS\system32\CompatTel
2015-04-16 21:06:59 ----SD---- C:\ProgramData\Microsoft
2015-04-16 21:06:59 ----D---- C:\WINDOWS\system32\wbem
2015-04-16 20:51:09 ----D---- C:\WINDOWS\system32\MRT
2015-04-16 20:43:05 ----A---- C:\WINDOWS\system32\MRT.exe
2015-04-16 20:42:48 ----D---- C:\ProgramData\Microsoft Help
2015-04-14 20:29:25 ----D---- C:\Users\Roman\AppData\Roaming\AVI ReComp
2015-04-14 01:24:21 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-04-11 19:23:03 ----D---- C:\Users\Roman\AppData\Roaming\TeamViewer
2015-04-11 19:23:03 ----D---- C:\Users\Roman\AppData\Roaming\DAEMON Tools Lite
2015-04-11 19:22:57 ----D---- C:\Users\Roman\AppData\Roaming\TS3Client
2015-04-11 19:22:49 ----D---- C:\WINDOWS\Minidump
2015-04-11 19:22:49 ----D---- C:\WINDOWS\debug
2015-04-11 19:17:36 ----D---- C:\Program Files\CCleaner
2015-04-09 23:08:07 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-04-09 23:07:18 ----D---- C:\WINDOWS\SYSWOW64\NV
2015-04-09 23:07:18 ----D---- C:\WINDOWS\system32\NV
2015-04-09 23:06:16 ----D---- C:\WINDOWS\system32\catroot
2015-04-09 23:05:04 ----D---- C:\ProgramData\Intel
2015-04-09 23:05:04 ----D---- C:\Program Files\Intel
2015-04-09 23:04:16 ----D---- C:\Program Files\Common Files\Intel
2015-04-09 23:04:14 ----D---- C:\Program Files (x86)\Intel
2015-04-09 23:03:57 ----D---- C:\WINDOWS\system32\DriverStore
2015-04-06 20:40:00 ----D---- C:\WINDOWS\Logs
2015-04-03 20:31:32 ----SD---- C:\Users\Roman\AppData\Roaming\Microsoft
2015-03-31 11:16:33 ----D---- C:\Users\Roman\AppData\Roaming\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-09-28 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-12-26 32544]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2015-03-24 132120]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2015-03-24 28600]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2015-03-24 128536]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2015-03-24 43576]
R3 ACPIVPC;@oem20.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-09-28 33560]
R3 bcbtums;@oem73.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-09-04 170712]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btwampfl;@oem73.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
R3 btwaudio;@oem3.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2013-07-12 186584]
R3 btwavdt;@oem3.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\WINDOWS\System32\drivers\btwavdt.sys [2013-07-12 228568]
R3 btwl2cap;@oem6.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2013-07-12 38616]
R3 dtsoftbus01;@oem27.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2013-12-28 283064]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-01-08 3775928]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-07-31 4102928]
R3 IntcDAud;@oem102.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-01-08 454416]
R3 iwdbus;@oem17.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-11-04 27032]
R3 MEIx64;@oem35.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem103.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2014-02-25 3349984]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-12-26 11311392]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSUSBVSTOR;@oem9.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-16 43832]
R3 SynTP;@oem11.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-16 447800]
R3 vm331avs;@oem13.inf,%USBCamera.DeviceDesc2%;Digital Camera 1; C:\WINDOWS\System32\Drivers\vm331avs.sys [2012-08-23 975104]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 dg_ssudbus;@oem97.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 EagleX64;EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys []
S3 intaud_WaveExtensible;@oem16.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-11-04 38296]
S3 ssudmdm;@oem98.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2015-03-24 434424]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2015-03-24 434424]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2013-08-19 976600]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-11-19 638368]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2012-07-13 2451456]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-01-08 319080]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-10-29 920864]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-11-19 157088]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-10-13 743688]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2015-04-09 5261584]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2015-03-24 815920]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2015-03-24 1004280]
S2 Avira.OE.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [2015-04-10 205104]
S2 BcmBtRSupport;@oem73.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-09-04 2252504]
S2 CAMService;CAM Service; C:\Program Files\Intel\CAM\bin\CAMService.exe [2014-09-03 1243344]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-28 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-12-26 1364256]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-01-08 280680]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-28 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-24 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-11-19 268192]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v4.202 - Log vytvořen 25/04/2015 v 23:03:32
# Aktualizováno 23/04/2015 by Xplode
# Databáze : 2015-04-23.2 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Roman - GAJ
# Spuštěno z : C:\Users\Roman\Desktop\adwcleaner_4.202.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Soubor Smazáno : C:\Users\Roman\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\flliilndjeohchalpbbcdekjklbdgfkk

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****


***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v


-\\ Google Chrome v42.0.2311.90


-\\ Chromium v


*************************


AdwCleaner[R6].txt - [1206 bytů] - [25/04/2015 23:02:47]


########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1189 bytů] ##########

Dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Roman at 2015-04-26 19:52:55
Microsoft Windows 8.1
System drive C: has 681 GB (75%) free of 905 GB
Total RAM: 8053 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:52:56, on 26. 4. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Fraps\fraps.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Roman.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.seznam.cz
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [MuteSync] C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - Startup: Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.lnk = C:\ProgramData\{a42176fe-cc04-4a38-a421-176fecc0dbfb}\Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Startup: MIRC v7 38.lnk = C:\ProgramData\{d1c0346d-8c5b-75a0-d1c0-0346d8c5d1b6}\MIRC v7 38.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Clip image - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: New note - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: @oem73.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: CAM Service (CAMService) - Intel® Corporation - C:\Program Files\Intel\CAM\bin\CAMService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 12926 bytes

======Listing Processes======





wininit.exe


C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 908351673824
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {dc653df9-a0ec-4d19-94c61491874a3076}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe"
"C:\Program Files\Intel\CAM\bin\CAMService.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
ClassicStartMenu.exe -startup
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\WINDOWS\system32\WerFault.exe -u -p 1308 -s 804
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\Fraps\fraps.exe
taskeng.exe {7865C150-2331-4504-84EA-1EAC50470092}
taskhostex.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000007e8
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
igfxEM.exe
igfxHK.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --on-initialized-event-handle=424 --parent-handle=428
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-325caa99-5c9d-4430-bc12-b009d6eff0f8 -SystemEventPortName:HostProcess-07c4083a-578f-452e-a394-7420c8af970e -IoCancelEventPortName:HostProcess-c2dc6b54-ed03-4f77-9c32-18f9fab212f2 -NonStateChangingEventPortName:HostProcess-ec685dd5-de36-4837-a71e-d8f03c49c991 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0217e4dc-6279-4cff-aa32-d6973df96dd7 -DeviceGroupId:WudfDefaultDevicePool
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\servicing\TrustedInstaller.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4264.0.1602044746\1404658898" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,41 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4061 --ignored=" --type=renderer " /prefetch:822062411
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Mixed/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Bootstrap/ExtensionUseSafeInstallation/Default/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/DevHQPAllowMatchInSchemeR2_PostPeriod/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Enabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Enabled/*UwSInterstitialStatus/On/*V8CacheOptions/heuristics/*V8VerifyHeap/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Control/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4264 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --enable-gpu-rasterization --enable-threaded-gpu-rasterization --disable-gpu-compositing --channel="4264.3.1592589394\575709759" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Mixed/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Bootstrap/ExtensionUseSafeInstallation/Default/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/DevHQPAllowMatchInSchemeR2_PostPeriod/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Enabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Enabled/*UwSInterstitialStatus/On/*V8CacheOptions/heuristics/*V8VerifyHeap/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Control/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4264 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --enable-gpu-rasterization --enable-threaded-gpu-rasterization --disable-gpu-compositing --channel="4264.4.1885902861\1502300617" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Mixed/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Bootstrap/ExtensionUseSafeInstallation/Default/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/DevHQPAllowMatchInSchemeR2_PostPeriod/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Enabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Enabled/*UwSInterstitialStatus/On/*V8CacheOptions/heuristics/*V8VerifyHeap/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Control/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4264 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --enable-gpu-rasterization --enable-threaded-gpu-rasterization --disable-gpu-compositing --channel="4264.5.187846458\347821259" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Mixed/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Bootstrap/ExtensionUseSafeInstallation/Default/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/DevHQPAllowMatchInSchemeR2_PostPeriod/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Enabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Enabled/*UwSInterstitialStatus/On/*V8CacheOptions/heuristics/*V8VerifyHeap/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Control/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4264 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --enable-gpu-rasterization --enable-threaded-gpu-rasterization --disable-gpu-compositing --channel="4264.6.439303653\1070765330" /prefetch:673131151
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
"C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe"
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
taskhost.exe $(Arg0)
"C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe" /connectToHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Mixed/*DomRel-Enable/enable/*EmbeddedSearch/Group1 dev:pp6 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Manual install/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Bootstrap/ExtensionUseSafeInstallation/Default/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/DevHQPAllowMatchInSchemeR2_PostPeriod/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SafeBrowsingIncidentReportingService/Enabled/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_54/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_12/*UMA-Uniformity-Trial-50-Percent/default/UMAInitialMetricsTiming/Enabled/*UseDelayAgnosticAEC/Enabled/*UwSInterstitialStatus/On/*V8CacheOptions/heuristics/*V8VerifyHeap/Disabled/*VoiceTrigger/Install/*WebRTC-ScreencastTargetBitrateOvershoot/Control/*WebRTC-SupportVP9/Default/WebRTC-UDPSocketNonBlockingIO/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=4264 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --enable-gpu-rasterization --enable-threaded-gpu-rasterization --disable-gpu-compositing --channel="4264.10.1075606881\19891326" /prefetch:673131151



C:\WINDOWS\WinStore\WSHost.exe -Embedding
"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\System32\ThumbnailExtractionHost.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Roman\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-07-27 12937872]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-07-10 1214608]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-08-16 665400]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-08-10 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-09-28 17079376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-09-28 191568]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2015-01-14 1565504]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2012-05-01 548864]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-07-26 508656]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"MuteSync"=C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe [2012-02-04 343040]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2015-01-14 311616]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-12-17 508800]
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2014-05-14 2534400]
"Avira Systray"=C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [2015-04-10 130048]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2015-03-24 726320]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.lnk - C:\ProgramData\{a42176fe-cc04-4a38-a421-176fecc0dbfb}\Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.exe
EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
MIRC v7 38.lnk - C:\ProgramData\{d1c0346d-8c5b-75a0-d1c0-0346d8c5d1b6}\MIRC v7 38.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.XVID"=xvidvfw.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-04-25 22:17:01 ----D---- C:\rsit
2015-04-25 22:17:01 ----D---- C:\Program Files\trend micro
2015-04-25 21:19:32 ----A---- C:\WINDOWS\system32\drivers\hitmanpro35.sys
2015-04-25 21:18:18 ----D---- C:\ProgramData\Hitman Pro
2015-04-25 21:07:30 ----D---- C:\ProgramData\HitmanPro
2015-04-23 21:40:48 ----D---- C:\Users\Roman\AppData\Roaming\Avira
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avnetflt.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2015-04-23 21:36:38 ----D---- C:\ProgramData\Avira
2015-04-23 21:36:38 ----D---- C:\Program Files (x86)\Avira
2015-04-21 08:26:41 ----D---- C:\Program Files (x86)\Burrrn
2015-04-16 22:26:28 ----RD---- C:\Program Files (x86)\Skype
2015-04-16 21:06:59 ----D---- C:\WINDOWS\system32\appraiser
2015-04-16 21:04:27 ----D---- C:\AdwCleaner
2015-04-16 20:38:33 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-04-16 20:38:33 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-04-16 20:38:32 ----A---- C:\WINDOWS\system32\tdh.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\wow64.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\tracerpt.exe
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\sechost.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-04-16 20:38:23 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-04-16 20:38:23 ----A---- C:\WINDOWS\system32\msctf.dll
2015-04-16 20:38:21 ----A---- C:\WINDOWS\system32\lsm.dll
2015-04-16 20:38:19 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-04-16 20:37:57 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-04-16 20:37:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-04-16 20:36:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-04-16 20:36:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-04-16 20:36:50 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-04-16 20:36:50 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-04-16 20:36:48 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\system32\wininet.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-04-16 20:36:46 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-04-16 20:36:46 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-04-16 20:36:46 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\jscript.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-04-16 20:29:06 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-04-16 20:29:05 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-04-16 20:29:05 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-04-16 20:29:05 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wups2.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wups.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-04-16 20:25:07 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-04-16 20:25:07 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-04-16 20:25:07 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-04-16 20:25:07 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\devinv.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\invagent.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\aepic.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-04-11 21:13:11 ----ASH---- C:\hiberfil.sys
2015-04-11 19:14:25 ----D---- C:\Program Files (x86)\Listen and Download Quran
2015-04-11 19:13:56 ----D---- C:\Program Files (x86)\QuieckuViewer
2015-04-11 19:13:04 ----D---- C:\Program Files (x86)\NiuCeOffers
2015-04-10 15:06:21 ----D---- C:\Users\Roman\AppData\Roaming\MyHeritage
2015-04-10 15:06:21 ----D---- C:\ProgramData\MyHeritage
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\PDFDocScout.DLL
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\PaintX.dll
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\ijl15.dll
2015-04-10 15:02:30 ----D---- C:\Users\Roman\AppData\Roaming\The Complete Genealogy Reporter - FTB
2015-04-10 15:02:30 ----A---- C:\WINDOWS\SYSWOW64\unicows.dll
2015-04-10 15:01:24 ----D---- C:\Program Files (x86)\MyHeritage
2015-04-10 14:58:20 ----D---- C:\Users\Roman\AppData\Roaming\Ancestry
2015-04-10 14:57:59 ----AD---- C:\Ancestry
2015-04-09 23:04:14 ----D---- C:\Program Files (x86)\Cisco
2015-04-09 22:19:30 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxTray.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxext.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxexps.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxCoIn_v4061.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2015-04-09 22:19:26 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2015-04-09 22:19:26 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2015-04-09 22:19:25 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\igdmd64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\drivers\igdkmd64.sys
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdde64.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdail64.dll
2015-04-09 22:19:22 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2015-04-09 22:19:21 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\Gfxv4_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\Gfxv2_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\drivers\IntcDAud.sys
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\difx64.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\CustomModeApp.exe
2015-04-09 22:17:04 ----D---- C:\ProgramData\IntelDLM
2015-04-09 22:10:50 ----D---- C:\Program Files (x86)\Intel Driver Update Utility
2015-04-09 22:10:42 ----D---- C:\ProgramData\Package Cache
2015-04-06 20:39:44 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-04-06 20:39:43 ----SD---- C:\WINDOWS\system32\GWX
2015-03-30 14:38:32 ----D---- C:\ProgramData\Aspell
2015-03-30 14:38:31 ----D---- C:\Users\Roman\AppData\Roaming\Iceni
2015-03-30 14:38:31 ----D---- C:\ProgramData\Iceni
2015-03-30 14:38:27 ----D---- C:\Users\Roman\AppData\Roaming\Aspell
2015-03-30 14:38:27 ----D---- C:\Program Files (x86)\Iceni

======List of files/folders modified in the last 1 month======

2015-04-26 19:52:56 ----D---- C:\WINDOWS\Temp
2015-04-26 19:52:34 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-04-26 00:00:00 ----D---- C:\WINDOWS\system32\sru
2015-04-25 23:42:54 ----D---- C:\WINDOWS\rescache
2015-04-25 23:42:11 ----D---- C:\WINDOWS\WinSxS
2015-04-25 23:38:49 ----D---- C:\WINDOWS\Prefetch
2015-04-25 23:36:19 ----D---- C:\WINDOWS\system32\config
2015-04-25 23:36:07 ----D---- C:\WINDOWS\system32\DriverStore
2015-04-25 23:36:07 ----D---- C:\WINDOWS\Inf
2015-04-25 23:35:58 ----D---- C:\WINDOWS\Microsoft.NET
2015-04-25 23:14:00 ----D---- C:\WINDOWS\system32\drivers
2015-04-25 23:11:28 ----D---- C:\Hry
2015-04-25 23:07:13 ----D---- C:\Fraps
2015-04-25 23:07:12 ----D---- C:\WINDOWS\system32\Tasks
2015-04-25 22:17:01 ----RD---- C:\Program Files
2015-04-25 22:15:46 ----D---- C:\Users\Roman\AppData\Roaming\ClassicShell
2015-04-25 22:13:04 ----D---- C:\Windows
2015-04-25 21:34:28 ----DC---- C:\WINDOWS\Panther
2015-04-25 21:30:08 ----D---- C:\Users\Roman\AppData\Roaming\mIRC
2015-04-25 21:18:18 ----HD---- C:\ProgramData
2015-04-25 21:18:02 ----SHD---- C:\System Volume Information
2015-04-25 20:44:31 ----RD---- C:\Program Files (x86)
2015-04-23 22:44:20 ----RD---- C:\WINDOWS\System32
2015-04-23 22:44:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-04-23 21:41:05 ----D---- C:\Users\Roman\AppData\Roaming\Mozilla
2015-04-23 21:37:34 ----SHD---- C:\WINDOWS\Installer
2015-04-19 21:35:11 ----D---- C:\WINDOWS\system32\catroot2
2015-04-17 21:42:28 ----RSD---- C:\WINDOWS\assembly
2015-04-17 20:14:20 ----D---- C:\WINDOWS\AppReadiness
2015-04-17 20:14:19 ----HD---- C:\Program Files\WindowsApps
2015-04-17 20:04:37 ----D---- C:\WINDOWS\AppCompat
2015-04-16 23:00:35 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-04-16 23:00:35 ----D---- C:\WINDOWS\SysWOW64
2015-04-16 23:00:35 ----D---- C:\WINDOWS\system32\cs-CZ
2015-04-16 23:00:35 ----D---- C:\WINDOWS\apppatch
2015-04-16 23:00:35 ----D---- C:\Program Files\Internet Explorer
2015-04-16 22:27:22 ----D---- C:\WINDOWS\CbsTemp
2015-04-16 22:26:29 ----D---- C:\Program Files (x86)\Common Files
2015-04-16 22:26:27 ----D---- C:\ProgramData\Skype
2015-04-16 21:07:00 ----SD---- C:\WINDOWS\system32\CompatTel
2015-04-16 21:06:59 ----SD---- C:\ProgramData\Microsoft
2015-04-16 21:06:59 ----D---- C:\WINDOWS\system32\wbem
2015-04-16 20:51:09 ----D---- C:\WINDOWS\system32\MRT
2015-04-16 20:43:05 ----A---- C:\WINDOWS\system32\MRT.exe
2015-04-16 20:42:48 ----D---- C:\ProgramData\Microsoft Help
2015-04-14 20:29:25 ----D---- C:\Users\Roman\AppData\Roaming\AVI ReComp
2015-04-14 01:24:21 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-04-11 19:23:03 ----D---- C:\Users\Roman\AppData\Roaming\TeamViewer
2015-04-11 19:23:03 ----D---- C:\Users\Roman\AppData\Roaming\DAEMON Tools Lite
2015-04-11 19:22:57 ----D---- C:\Users\Roman\AppData\Roaming\TS3Client
2015-04-11 19:22:49 ----D---- C:\WINDOWS\Minidump
2015-04-11 19:22:49 ----D---- C:\WINDOWS\debug
2015-04-11 19:17:36 ----D---- C:\Program Files\CCleaner
2015-04-09 23:08:07 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-04-09 23:07:18 ----D---- C:\WINDOWS\SYSWOW64\NV
2015-04-09 23:07:18 ----D---- C:\WINDOWS\system32\NV
2015-04-09 23:06:16 ----D---- C:\WINDOWS\system32\catroot
2015-04-09 23:05:04 ----D---- C:\ProgramData\Intel
2015-04-09 23:05:04 ----D---- C:\Program Files\Intel
2015-04-09 23:04:16 ----D---- C:\Program Files\Common Files\Intel
2015-04-09 23:04:14 ----D---- C:\Program Files (x86)\Intel
2015-04-06 20:40:00 ----D---- C:\WINDOWS\Logs
2015-04-03 20:31:32 ----SD---- C:\Users\Roman\AppData\Roaming\Microsoft
2015-03-31 11:16:33 ----D---- C:\Users\Roman\AppData\Roaming\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-09-28 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-12-26 32544]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2015-03-24 132120]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2015-03-24 28600]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2015-03-24 128536]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2015-03-24 43576]
R3 ACPIVPC;@oem20.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-09-28 33560]
R3 bcbtums;@oem73.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-09-04 170712]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btwampfl;@oem73.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
R3 btwaudio;@oem3.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2013-07-12 186584]
R3 btwavdt;@oem3.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\WINDOWS\System32\drivers\btwavdt.sys [2013-07-12 228568]
R3 btwl2cap;@oem6.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2013-07-12 38616]
R3 dtsoftbus01;@oem27.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2013-12-28 283064]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-01-08 3775928]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-07-31 4102928]
R3 IntcDAud;@oem102.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-01-08 454416]
R3 iwdbus;@oem17.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-11-04 27032]
R3 MEIx64;@oem35.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem103.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2014-02-25 3349984]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-12-26 11311392]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSUSBVSTOR;@oem9.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-16 43832]
R3 SynTP;@oem11.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-16 447800]
R3 vm331avs;@oem13.inf,%USBCamera.DeviceDesc2%;Digital Camera 1; C:\WINDOWS\System32\Drivers\vm331avs.sys [2012-08-23 975104]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 dg_ssudbus;@oem97.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 EagleX64;EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys []
S3 intaud_WaveExtensible;@oem16.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-11-04 38296]
S3 ssudmdm;@oem98.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2015-03-24 434424]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2015-03-24 434424]
R2 Avira.OE.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [2015-04-10 205104]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2013-08-19 976600]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-11-19 638368]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2012-07-13 2451456]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-01-08 319080]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-10-29 920864]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-11-19 157088]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-10-13 743688]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2015-04-09 5261584]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2015-03-24 815920]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2015-03-24 1004280]
S2 BcmBtRSupport;@oem73.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-09-04 2252504]
S2 CAMService;CAM Service; C:\Program Files\Intel\CAM\bin\CAMService.exe [2014-09-03 1243344]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-28 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-12-26 1364256]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-01-08 280680]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-28 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-24 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-11-19 268192]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Roman at 2015-04-26 21:36:31
Microsoft Windows 8.1
System drive C: has 685 GB (76%) free of 905 GB
Total RAM: 8053 MB (82% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:36:35, on 26. 4. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Fraps\fraps.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
C:\Program Files\trend micro\Roman.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.seznam.cz
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [MuteSync] C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - Startup: Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.lnk = C:\ProgramData\{a42176fe-cc04-4a38-a421-176fecc0dbfb}\Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Startup: MIRC v7 38.lnk = C:\ProgramData\{d1c0346d-8c5b-75a0-d1c0-0346d8c5d1b6}\MIRC v7 38.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Clip image - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: New note - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: @oem73.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: CAM Service (CAMService) - Intel® Corporation - C:\Program Files\Intel\CAM\bin\CAMService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 12331 bytes

======Listing Processes======





wininit.exe


winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 316149793680
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
"C:\Program Files\Intel\CAM\bin\CAMService.exe"
dashost.exe {53a8e78d-4c33-4cd9-8d95beb933d94cd3}
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskhostex.exe
C:\Fraps\fraps.exe
taskeng.exe {A2CB6A95-A244-41A1-BDFA-1072BF6EB3BF}
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Explorer.EXE
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_0000079c
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-cf5640e2-c0e7-4e13-999f-df001b429c91 -SystemEventPortName:HostProcess-8eaa606f-9735-4faa-b624-1c90e3068688 -IoCancelEventPortName:HostProcess-ef98e3e6-e719-4d4f-83ad-5a00656858e2 -NonStateChangingEventPortName:HostProcess-66c86eae-037b-420b-8538-3c7b4c7de567 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9880d611-309a-41b8-a0c1-edd5913b6be7 -DeviceGroupId:WudfDefaultDevicePool
igfxEM.exe
igfxHK.exe
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\servicing\TrustedInstaller.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\04262015_213200.log
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
ClassicStartMenu.exe -startup
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe" /m
"C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe"
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
"C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe" /connectToHost

"C:\Users\Roman\Desktop\RSITx64.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-07-27 12937872]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-07-10 1214608]
"SynLenovoGestureMgr"=C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [2012-08-16 665400]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-08-10 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-09-28 17079376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-09-28 191568]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Program Files (x86)\Samsung\Kies\Kies.exe [2015-01-14 1565504]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2012-05-01 548864]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2012-07-26 508656]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"MuteSync"=C:\Program Files (x86)\Lenovo\Lenovo MuteSync\MuteSync.exe [2012-02-04 343040]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2015-01-14 311616]
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2014-05-14 2534400]
"Avira Systray"=C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [2015-04-10 130048]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2015-03-24 726320]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

C:\Users\Roman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.lnk - C:\ProgramData\{a42176fe-cc04-4a38-a421-176fecc0dbfb}\Download mIRC 7.38 Final Incl. Crack-TE [ATOM] Torrent - KickassTorrents.exe
EvernoteClipper.lnk - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
MIRC v7 38.lnk - C:\ProgramData\{d1c0346d-8c5b-75a0-d1c0-0346d8c5d1b6}\MIRC v7 38.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.XVID"=xvidvfw.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-04-26 21:32:00 ----D---- C:\_OTM
2015-04-25 22:17:01 ----D---- C:\rsit
2015-04-25 22:17:01 ----D---- C:\Program Files\trend micro
2015-04-25 21:19:32 ----A---- C:\WINDOWS\system32\drivers\hitmanpro35.sys
2015-04-25 21:18:18 ----D---- C:\ProgramData\Hitman Pro
2015-04-25 21:07:30 ----D---- C:\ProgramData\HitmanPro
2015-04-23 21:40:48 ----D---- C:\Users\Roman\AppData\Roaming\Avira
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avnetflt.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2015-04-23 21:39:32 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2015-04-23 21:36:38 ----D---- C:\ProgramData\Avira
2015-04-23 21:36:38 ----D---- C:\Program Files (x86)\Avira
2015-04-21 08:26:41 ----D---- C:\Program Files (x86)\Burrrn
2015-04-16 22:26:28 ----RD---- C:\Program Files (x86)\Skype
2015-04-16 21:06:59 ----D---- C:\WINDOWS\system32\appraiser
2015-04-16 21:04:27 ----D---- C:\AdwCleaner
2015-04-16 20:38:33 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-04-16 20:38:33 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-04-16 20:38:32 ----A---- C:\WINDOWS\system32\tdh.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\tracerpt.exe
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\wow64.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\tracerpt.exe
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\sechost.dll
2015-04-16 20:38:31 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-04-16 20:38:23 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2015-04-16 20:38:23 ----A---- C:\WINDOWS\system32\msctf.dll
2015-04-16 20:38:21 ----A---- C:\WINDOWS\system32\lsm.dll
2015-04-16 20:38:19 ----A---- C:\WINDOWS\system32\pku2u.dll
2015-04-16 20:37:57 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2015-04-16 20:37:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-04-16 20:36:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-04-16 20:36:51 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-04-16 20:36:50 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-04-16 20:36:50 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-04-16 20:36:48 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\system32\wininet.dll
2015-04-16 20:36:47 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-04-16 20:36:46 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-04-16 20:36:46 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-04-16 20:36:46 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\jscript.dll
2015-04-16 20:36:45 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-04-16 20:36:44 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-04-16 20:29:06 ----A---- C:\WINDOWS\system32\drivers\http.sys
2015-04-16 20:29:05 ----A---- C:\WINDOWS\SYSWOW64\clfsw32.dll
2015-04-16 20:29:05 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2015-04-16 20:29:05 ----A---- C:\WINDOWS\system32\clfsw32.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wucltux.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-04-16 20:25:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wuwebv.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wups2.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wups.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wudriver.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-04-16 20:25:08 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2015-04-16 20:25:07 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2015-04-16 20:25:07 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2015-04-16 20:25:07 ----A---- C:\WINDOWS\system32\wuapp.exe
2015-04-16 20:25:07 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\devinv.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-04-16 20:24:32 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\invagent.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\aepic.dll
2015-04-16 20:24:31 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-04-11 21:13:11 ----ASH---- C:\hiberfil.sys
2015-04-11 19:14:25 ----D---- C:\Program Files (x86)\Listen and Download Quran
2015-04-11 19:13:56 ----D---- C:\Program Files (x86)\QuieckuViewer
2015-04-11 19:13:04 ----D---- C:\Program Files (x86)\NiuCeOffers
2015-04-10 15:06:21 ----D---- C:\Users\Roman\AppData\Roaming\MyHeritage
2015-04-10 15:06:21 ----D---- C:\ProgramData\MyHeritage
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\PDFDocScout.DLL
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\PaintX.dll
2015-04-10 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\ijl15.dll
2015-04-10 15:02:30 ----D---- C:\Users\Roman\AppData\Roaming\The Complete Genealogy Reporter - FTB
2015-04-10 15:02:30 ----A---- C:\WINDOWS\SYSWOW64\unicows.dll
2015-04-10 15:01:24 ----D---- C:\Program Files (x86)\MyHeritage
2015-04-10 14:58:20 ----D---- C:\Users\Roman\AppData\Roaming\Ancestry
2015-04-10 14:57:59 ----AD---- C:\Ancestry
2015-04-09 23:04:14 ----D---- C:\Program Files (x86)\Cisco
2015-04-09 22:19:30 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-04-09 22:19:29 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxTray.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxext.exe
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxexps.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2015-04-09 22:19:28 ----A---- C:\WINDOWS\system32\igfxCoIn_v4061.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2015-04-09 22:19:27 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2015-04-09 22:19:26 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2015-04-09 22:19:26 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2015-04-09 22:19:25 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\igdmd64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2015-04-09 22:19:24 ----A---- C:\WINDOWS\system32\drivers\igdkmd64.sys
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdde64.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2015-04-09 22:19:23 ----A---- C:\WINDOWS\system32\igdail64.dll
2015-04-09 22:19:22 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2015-04-09 22:19:21 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\Gfxv4_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\Gfxv2_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-04-09 22:19:20 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\drivers\IntcDAud.sys
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\difx64.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-04-09 22:19:19 ----A---- C:\WINDOWS\system32\CustomModeApp.exe
2015-04-09 22:17:04 ----D---- C:\ProgramData\IntelDLM
2015-04-09 22:10:50 ----D---- C:\Program Files (x86)\Intel Driver Update Utility
2015-04-09 22:10:42 ----D---- C:\ProgramData\Package Cache
2015-04-06 20:39:44 ----SD---- C:\WINDOWS\SYSWOW64\GWX
2015-04-06 20:39:43 ----SD---- C:\WINDOWS\system32\GWX
2015-03-30 14:38:32 ----D---- C:\ProgramData\Aspell
2015-03-30 14:38:31 ----D---- C:\Users\Roman\AppData\Roaming\Iceni
2015-03-30 14:38:31 ----D---- C:\ProgramData\Iceni
2015-03-30 14:38:27 ----D---- C:\Users\Roman\AppData\Roaming\Aspell
2015-03-30 14:38:27 ----D---- C:\Program Files (x86)\Iceni

======List of files/folders modified in the last 1 month======

2015-04-26 21:36:35 ----D---- C:\WINDOWS\Temp
2015-04-26 21:35:36 ----D---- C:\WINDOWS\Prefetch
2015-04-26 21:32:58 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-04-26 21:32:16 ----D---- C:\Windows
2015-04-26 21:32:00 ----D---- C:\WINDOWS\Tasks
2015-04-26 21:05:57 ----D---- C:\Users\Roman\AppData\Roaming\ClassicShell
2015-04-26 21:00:00 ----D---- C:\WINDOWS\system32\sru
2015-04-26 20:56:27 ----D---- C:\WINDOWS\Microsoft.NET
2015-04-26 20:56:00 ----D---- C:\WINDOWS\system32\config
2015-04-26 20:34:43 ----D---- C:\Users\Roman\AppData\Roaming\mIRC
2015-04-26 19:55:17 ----D---- C:\Hry
2015-04-26 19:53:04 ----D---- C:\WINDOWS\system32\Tasks
2015-04-26 19:53:04 ----D---- C:\Fraps
2015-04-25 23:42:54 ----D---- C:\WINDOWS\rescache
2015-04-25 23:42:11 ----D---- C:\WINDOWS\WinSxS
2015-04-25 23:36:07 ----D---- C:\WINDOWS\system32\DriverStore
2015-04-25 23:36:07 ----D---- C:\WINDOWS\Inf
2015-04-25 23:14:00 ----D---- C:\WINDOWS\system32\drivers
2015-04-25 22:17:01 ----RD---- C:\Program Files
2015-04-25 21:34:28 ----DC---- C:\WINDOWS\Panther
2015-04-25 21:18:18 ----HD---- C:\ProgramData
2015-04-25 21:18:02 ----SHD---- C:\System Volume Information
2015-04-25 20:44:31 ----RD---- C:\Program Files (x86)
2015-04-23 22:44:20 ----RD---- C:\WINDOWS\System32
2015-04-23 22:44:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-04-23 21:41:05 ----D---- C:\Users\Roman\AppData\Roaming\Mozilla
2015-04-23 21:37:34 ----SHD---- C:\WINDOWS\Installer
2015-04-19 21:35:11 ----D---- C:\WINDOWS\system32\catroot2
2015-04-17 21:42:28 ----RSD---- C:\WINDOWS\assembly
2015-04-17 20:14:20 ----D---- C:\WINDOWS\AppReadiness
2015-04-17 20:14:19 ----HD---- C:\Program Files\WindowsApps
2015-04-17 20:04:37 ----D---- C:\WINDOWS\AppCompat
2015-04-16 23:00:35 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-04-16 23:00:35 ----D---- C:\WINDOWS\SysWOW64
2015-04-16 23:00:35 ----D---- C:\WINDOWS\system32\cs-CZ
2015-04-16 23:00:35 ----D---- C:\WINDOWS\apppatch
2015-04-16 23:00:35 ----D---- C:\Program Files\Internet Explorer
2015-04-16 22:27:22 ----D---- C:\WINDOWS\CbsTemp
2015-04-16 22:26:29 ----D---- C:\Program Files (x86)\Common Files
2015-04-16 22:26:27 ----D---- C:\ProgramData\Skype
2015-04-16 21:07:00 ----SD---- C:\WINDOWS\system32\CompatTel
2015-04-16 21:06:59 ----SD---- C:\ProgramData\Microsoft
2015-04-16 21:06:59 ----D---- C:\WINDOWS\system32\wbem
2015-04-16 20:51:09 ----D---- C:\WINDOWS\system32\MRT
2015-04-16 20:43:05 ----A---- C:\WINDOWS\system32\MRT.exe
2015-04-16 20:42:48 ----D---- C:\ProgramData\Microsoft Help
2015-04-14 20:29:25 ----D---- C:\Users\Roman\AppData\Roaming\AVI ReComp
2015-04-14 01:24:21 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-04-11 19:23:03 ----D---- C:\Users\Roman\AppData\Roaming\TeamViewer
2015-04-11 19:23:03 ----D---- C:\Users\Roman\AppData\Roaming\DAEMON Tools Lite
2015-04-11 19:22:57 ----D---- C:\Users\Roman\AppData\Roaming\TS3Client
2015-04-11 19:22:49 ----D---- C:\WINDOWS\Minidump
2015-04-11 19:22:49 ----D---- C:\WINDOWS\debug
2015-04-11 19:17:36 ----D---- C:\Program Files\CCleaner
2015-04-09 23:08:07 ----A---- C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-04-09 23:07:18 ----D---- C:\WINDOWS\SYSWOW64\NV
2015-04-09 23:07:18 ----D---- C:\WINDOWS\system32\NV
2015-04-09 23:06:16 ----D---- C:\WINDOWS\system32\catroot
2015-04-09 23:05:04 ----D---- C:\ProgramData\Intel
2015-04-09 23:05:04 ----D---- C:\Program Files\Intel
2015-04-09 23:04:16 ----D---- C:\Program Files\Common Files\Intel
2015-04-09 23:04:14 ----D---- C:\Program Files (x86)\Intel
2015-04-06 20:40:00 ----D---- C:\WINDOWS\Logs
2015-04-03 20:31:32 ----SD---- C:\Users\Roman\AppData\Roaming\Microsoft
2015-03-31 11:16:33 ----D---- C:\Users\Roman\AppData\Roaming\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2012-09-28 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-12-26 32544]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2015-03-24 132120]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2015-03-24 28600]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2015-03-24 128536]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2015-03-24 43576]
R3 ACPIVPC;@oem20.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2012-09-28 33560]
R3 bcbtums;@oem73.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2013-09-04 170712]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 btwampfl;@oem73.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2013-09-04 166104]
R3 btwaudio;@oem3.inf,%btaudio.SvcDesc%;Bluetooth Audio Device Service; C:\WINDOWS\system32\drivers\btwaudio.sys [2013-07-12 186584]
R3 btwavdt;@oem3.inf,%btwavdt.SvcDesc%;Bluetooth AVDT; C:\WINDOWS\System32\drivers\btwavdt.sys [2013-07-12 228568]
R3 btwl2cap;@oem6.inf,%btwl2cap.SVCDESC%;Bluetooth L2CAP Service; C:\WINDOWS\system32\DRIVERS\btwl2cap.sys [2012-07-27 40248]
R3 btwrchid;btwrchid; C:\WINDOWS\System32\drivers\btwrchid.sys [2013-07-12 38616]
R3 dtsoftbus01;@oem27.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2013-12-28 283064]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-01-08 3775928]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-07-31 4102928]
R3 IntcDAud;@oem102.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-01-08 454416]
R3 iwdbus;@oem17.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-11-04 27032]
R3 MEIx64;@oem35.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem103.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2014-02-25 3349984]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-12-26 11311392]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 RSUSBVSTOR;@oem9.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-16 43832]
R3 SynTP;@oem11.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-08-16 447800]
R3 vm331avs;@oem13.inf,%USBCamera.DeviceDesc2%;Digital Camera 1; C:\WINDOWS\System32\Drivers\vm331avs.sys [2012-08-23 975104]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-29 1198080]
S3 dg_ssudbus;@oem97.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 EagleX64;EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys []
S3 intaud_WaveExtensible;@oem16.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-11-04 38296]
S3 ssudmdm;@oem98.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 141600]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2015-03-24 434424]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2015-03-24 434424]
R2 Avira.OE.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [2015-04-10 205104]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2013-08-19 976600]
R2 CAMService;CAM Service; C:\Program Files\Intel\CAM\bin\CAMService.exe [2014-09-03 1243344]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-11-19 638368]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-01-08 319080]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-10-29 920864]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-11-19 157088]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-10-13 743688]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2015-04-09 5261584]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2015-03-24 815920]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2015-03-24 1004280]
S2 BcmBtRSupport;@oem73.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2013-09-04 2252504]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-28 116648]
S2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2012-07-13 2451456]
S2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-07-18 128896]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-12-26 1364256]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-01-08 280680]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-28 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-24 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-11-19 268192]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

jo to uz ok, diky moc

Tak to jsem rád. Nemáte zač!