Pomaly ntb, nejdou spustit nektere programy
Napsal: 29 led 2016 17:34
Dobry den,
muj notebook se znacne zpomalil. V Google Chrome zacali nekontrolovane vyskakovat okna s reklamou. nedala se zavrit. Chrome jsem odinstaloval pouzivam Explorer. Take nesel nastartovat iTunes. Ten jsem take odinstaloval. Bojim se kompletni nove istalace a proto se na Vas obracim, jestli by nesel stavajici System zachranit.
Ziji stridave ve Svycarsku a v Cechach, proto ten nemecky operacni System.
Dekuji
J. Kohout
# AdwCleaner v5.030 - Bericht erstellt am 29/01/2016 um 17:07:27
# Aktualisiert am 17/01/2016 von Xplode
# Datenbank : 2016-01-25.3 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Jaro - JARO-MSI
# Gestartet von : C:\Users\Jaro\Desktop\adwcleaner_5.030.exe
# Option : Löschen
# Unterstützung : http://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\SmartPCFixer
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\SmartPCFixer
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [857 Bytes] ##########
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jaro at 2016-01-29 17:19:16
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 42 GB (15%) free of 280 GB
Total RAM: 3886 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:20:15, on 29.01.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
C:\Users\Jaro\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Jaro\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\Jaro.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jaro\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-21-333469964-755384592-343417231-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-333469964-755384592-343417231-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: Dropbox.lnk = Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Adobe Acrobat - Schnellstart.lnk = ?
O4 - Global Startup: AutoCAD-Startbeschleuniger.lnk = C:\Program Files (x86)\Common Files\Autodesk Shared\acstart16.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office
\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} (20-20 3D Viewer for IKEA) - http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
O16 - DPF: {33415AC7-AFFA-4D55-B41C-C64C0D07DFCA} (Hewlett-Packard Printer Diagnostics) - http://h50203.www5.hp.com/HPISWeb/Custo ... anager.CAB
O16 - DPF: {82E5DF24-51E8-47CD-864A-F4BD5005AA73} (iCloud Web App Plugin) - https://www.icloud.com/system/iCloud.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (file missing)
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer
\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AirPrint - Apple Inc. - C:\AirPrint\airprint.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Autodesk Licensing Service - Autodesk, Inc. - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP DS Service - Hewlett-Packard Company - C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology
\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: lmab_device - - C:\windows\system32\LMabcoms.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine
Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine
Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: CryptoPlus XME Engine Service (xmengine service) - Monet+, a.s. - C:\windows\SysWOW64\xmesrv.exe
--
End of file - 12764 bytes
======Scheduled tasks folder======
C:\windows\tasks\DropboxUpdateTaskUserS-1-5-21-333469964-755384592-343417231-1001Core.job - C:\Users\Jaro\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\windows\tasks\DropboxUpdateTaskUserS-1-5-21-333469964-755384592-343417231-1001UA.job - C:\Users\Jaro\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua
/installsource scheduler
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-27 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-18 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-23 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-27 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-23 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-18 7021880]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2015-08-06 421888]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-12-22 596528]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2015-10-21 60688]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2015-10-21 103696]
"OneDrive"=C:\Users\Jaro\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-16 551112]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Acrobat - Schnellstart.lnk - C:\windows\Installer\{AC76BA86-1033-F400-7760-100000000002}\SC_Acrobat.exe
AutoCAD-Startbeschleuniger.lnk - C:\Program Files (x86)\Common Files\Autodesk Shared\acstart16.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Users\Jaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"VIDC.IV31"=ir32_32.dll
"VIDC.IV32"=ir32_32.dll
"VIDC.IV41"=ir41_32.ax
"VIDC.IV50"=ir50_32.dll
"vidc.XVID"=xvidvfw.dll
"VIDC.ACDV"=ACDV.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"msacm.lame"=lame.ax
"vidc.dvsd"=mcdvd_32.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.DIVX"=DivX.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"vidc.LAGS"=lagarith.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - "C:\windows\system32\NOTEPAD.EXE" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2016-01-29 17:19:16 ----D---- C:\rsit
2016-01-29 17:19:16 ----D---- C:\Program Files (x86)\trend micro
2016-01-29 16:48:12 ----HD---- C:\OneDriveTemp
2016-01-27 10:57:16 ----D---- C:\Program Files (x86)\Common Files\Java
2016-01-27 10:56:53 ----D---- C:\Users\Jaro\AppData\Roaming\Sun
2016-01-27 10:56:30 ----A---- C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2016-01-17 10:21:53 ----ASH---- C:\pagefile.sys
2016-01-14 11:52:32 ----A---- C:\windows\SysWOW64\schannel.dll
2016-01-14 11:52:32 ----A---- C:\windows\SysWOW64\ntoskrnl.exe
2016-01-14 11:52:32 ----A---- C:\windows\SysWOW64\kerberos.dll
2016-01-14 11:52:31 ----A---- C:\windows\SysWOW64\wdigest.dll
2016-01-14 11:52:31 ----A---- C:\windows\SysWOW64\rpcrt4.dll
2016-01-14 11:52:31 ----A---- C:\windows\SysWOW64\ntkrnlpa.exe
2016-01-14 11:52:31 ----A---- C:\windows\SysWOW64\ncrypt.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\TSpkg.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\sspicli.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\secur32.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\ntvdm64.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\ntdll.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\msv1_0.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\kernel32.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\cryptbase.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\credssp.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\wow32.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\user.exe
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\srclient.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\setup16.exe
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\msobjs.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\msaudite.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\KernelBase.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\instnm.exe
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\auditpol.exe
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\apisetschema.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\adtschema.dll
2016-01-14 11:04:14 ----HD---- C:\$SysReset
2016-01-14 09:24:00 ----D---- C:\SSB2000_neu
2016-01-14 08:50:19 ----A---- C:\windows\SysWOW64\WMVDECOD.DLL
2016-01-14 08:50:19 ----A---- C:\windows\SysWOW64\msmpeg2adec.dll
2016-01-14 08:50:17 ----A---- C:\windows\SysWOW64\WMADMOD.DLL
2016-01-14 08:50:17 ----A---- C:\windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-14 08:50:15 ----A---- C:\windows\SysWOW64\WMVSDECD.DLL
2016-01-14 08:50:15 ----A---- C:\windows\SysWOW64\WMSPDMOD.DLL
2016-01-14 08:50:15 ----A---- C:\windows\SysWOW64\WMADMOE.DLL
2016-01-14 08:50:15 ----A---- C:\windows\SysWOW64\mf.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\WMVXENCD.DLL
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\WMVENCOD.DLL
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\wmpmde.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\quartz.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\qdvd.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\evr.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\devenum.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\COLORCNV.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\WMVSENCD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\WMSPDMOE.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\VIDRESZR.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\rrinstaller.exe
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\qasf.dll
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\msmpeg2vdec.dll
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MPG4DECD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MP4SDECD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MP43DECD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MP3DMOD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MFWMAAEC.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\mfvdsp.dll
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\mfplat.dll
2016-01-14 08:50:11 ----A---- C:\windows\SysWOW64\mfps.dll
2016-01-14 08:50:11 ----A---- C:\windows\SysWOW64\mfpmp.exe
2016-01-14 08:50:11 ----A---- C:\windows\SysWOW64\mferror.dll
2016-01-14 08:50:11 ----A---- C:\windows\SysWOW64\ksuser.dll
2016-01-14 08:50:02 ----A---- C:\windows\SysWOW64\mapistub.dll
2016-01-14 08:50:02 ----A---- C:\windows\SysWOW64\mapi32.dll
2016-01-14 08:50:02 ----A---- C:\windows\SysWOW64\fixmapi.exe
2016-01-14 08:50:00 ----A---- C:\windows\SysWOW64\qedit.dll
2016-01-14 08:49:52 ----A---- C:\windows\SysWOW64\iernonce.dll
2016-01-14 08:49:52 ----A---- C:\windows\SysWOW64\ieetwproxystub.dll
2016-01-14 08:49:51 ----A---- C:\windows\SysWOW64\mshtmled.dll
2016-01-14 08:49:50 ----A---- C:\windows\SysWOW64\MshtmlDac.dll
2016-01-14 08:49:50 ----A---- C:\windows\SysWOW64\iertutil.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\vbscript.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\urlmon.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\occache.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\iedkcs32.dll
2016-01-14 08:49:48 ----A---- C:\windows\SysWOW64\dxtrans.dll
2016-01-14 08:49:47 ----A---- C:\windows\SysWOW64\mshtml.dll
2016-01-14 08:49:47 ----A---- C:\windows\SysWOW64\msfeeds.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\jsproxy.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\jscript9diag.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\jscript.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\iesetup.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\dxtmsft.dll
2016-01-14 08:49:45 ----A---- C:\windows\SysWOW64\ieui.dll
2016-01-14 08:49:45 ----A---- C:\windows\SysWOW64\ieframe.dll
2016-01-14 08:49:44 ----A---- C:\windows\SysWOW64\mshtmlmedia.dll
2016-01-14 08:49:43 ----A---- C:\windows\SysWOW64\webcheck.dll
2016-01-14 08:49:43 ----A---- C:\windows\SysWOW64\jscript9.dll
2016-01-14 08:49:43 ----A---- C:\windows\SysWOW64\ieUnatt.exe
2016-01-14 08:49:43 ----A---- C:\windows\SysWOW64\ieapfltr.dll
2016-01-14 08:49:42 ----A---- C:\windows\SysWOW64\wininet.dll
2016-01-14 08:49:41 ----A---- C:\windows\SysWOW64\msrating.dll
2016-01-14 08:48:24 ----A---- C:\windows\SysWOW64\advapi32.dll
2016-01-14 08:48:20 ----A---- C:\windows\SysWOW64\gdi32.dll
2016-01-09 14:11:36 ----D---- C:\AdwCleaner
2016-01-08 19:43:03 ----A---- C:\autoexec.bat
2016-01-08 16:36:41 ----D---- C:\ProgramData\Malwarebytes
2016-01-08 14:56:03 ----D---- C:\Program Files (x86)\Common Files\Skype
======List of files/folders modified in the last 1 month======
2016-01-29 17:19:16 ----RD---- C:\Program Files (x86)
2016-01-29 17:11:35 ----D---- C:\Users\Jaro\AppData\Roaming\Dropbox
2016-01-29 17:10:39 ----D---- C:\windows\Temp
2016-01-29 17:09:07 ----A---- C:\windows\SysWOW64\log.txt
2016-01-29 17:03:01 ----D---- C:\windows\System32
2016-01-29 17:03:01 ----D---- C:\windows\inf
2016-01-29 17:02:04 ----D---- C:\windows\Prefetch
2016-01-29 16:47:05 ----D---- C:\Windows
2016-01-29 16:44:48 ----SHD---- C:\Config.Msi
2016-01-29 16:43:05 ----SHD---- C:\windows\Installer
2016-01-29 16:42:48 ----D---- C:\windows\SysWOW64
2016-01-29 16:42:34 ----RSD---- C:\windows\Fonts
2016-01-29 16:41:41 ----SHD---- C:\System Volume Information
2016-01-29 16:39:44 ----D---- C:\ProgramData\Apple
2016-01-29 16:36:52 ----SD---- C:\ProgramData\Microsoft
2016-01-29 16:36:52 ----D---- C:\Program Files (x86)\Microsoft
2016-01-29 16:28:46 ----D---- C:\Program Files (x86)\Google
2016-01-29 16:27:38 ----D---- C:\Program Files
2016-01-29 16:23:47 ----D---- C:\Program Files (x86)\iTunes
2016-01-28 19:34:04 ----D---- C:\Users\Jaro\AppData\Roaming\Skype
2016-01-27 10:57:16 ----D---- C:\Program Files (x86)\Common Files
2016-01-27 10:55:57 ----D---- C:\ProgramData\Oracle
2016-01-27 10:55:53 ----D---- C:\Program Files (x86)\Java
2016-01-23 09:15:38 ----HD---- C:\ProgramData
2016-01-15 18:19:53 ----D---- C:\windows\pss
2016-01-15 18:03:36 ----D---- C:\Program Files (x86)\Common Files\Nero
2016-01-15 18:03:02 ----D---- C:\ProgramData\Nero
2016-01-15 17:49:28 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-01-15 17:38:13 ----D---- C:\Program Files (x86)\Common Files\FlashIntegro
2016-01-15 17:35:59 ----D---- C:\ProgramData\Sophos
2016-01-15 08:40:32 ----D---- C:\windows\winsxs
2016-01-15 08:29:24 ----D---- C:\windows\SysWOW64\de-DE
2016-01-15 08:29:23 ----D---- C:\windows\SysWOW64\en-US
2016-01-15 08:28:56 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-15 08:28:31 ----D---- C:\windows\AppPatch
2016-01-15 08:23:21 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-14 18:33:04 ----D---- C:\ProgramData\Microsoft Help
2016-01-14 18:23:24 ----D---- C:\windows\debug
2016-01-14 18:18:29 ----A---- C:\windows\win.ini
2016-01-14 10:37:55 ----D---- C:\windows\Logs
2016-01-14 09:26:48 ----D---- C:\SSB2000
2016-01-08 18:59:08 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2016-01-08 18:31:47 ----D---- C:\windows\L2Schemas
2016-01-08 18:30:18 ----D---- C:\windows\Tasks
2016-01-08 14:56:08 ----D---- C:\ProgramData\Skype
2016-01-08 14:56:03 ----RD---- C:\Program Files (x86)\Skype
2016-01-03 16:39:57 ----D---- C:\Program Files (x86)\QuickTime
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;Avast! Firewall Driver; C:\windows\system32\DRIVERS\aswNdisFlt.sys []
R0 aswRvrt;avast! Revert; C:\windows\SysWOW64\drivers\aswRvrt.sys []
R0 aswVmm;avast! VM Monitor; C:\windows\SysWOW64\drivers\aswVmm.sys []
R0 BtHidBus;Bluetooth HID Bus Service; C:\windows\System32\Drivers\BtHidBus.sys []
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys []
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys []
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys []
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys []
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys []
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys []
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys []
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys []
R3 avmaura;AVM USB-Fernanschluss; C:\windows\system32\DRIVERS\avmaura.sys []
R3 BthAvrcp;Bluetooth-AVRCP-Profil; C:\windows\system32\DRIVERS\BthAvrcp.sys []
R3 BthEnum;Bluetooth-Anforderungsblocktreiber; C:\windows\system32\DRIVERS\BthEnum.sys []
R3 BthPan;Bluetooth-Gerät (PAN); C:\windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;USB-Treiber für Bluetooth-Funkgerät; C:\windows\System32\Drivers\BTHUSB.sys []
R3 ETD;ELAN PS/2 Port Input Device; C:\windows\system32\DRIVERS\ETD.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys []
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys []
R3 Impcd;Impcd; C:\windows\system32\DRIVERS\Impcd.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys []
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys []
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\windows\system32\DRIVERS\LHidFilt.Sys []
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\windows\system32\DRIVERS\LMouFilt.Sys []
R3 MBfilt;MBfilt; C:\windows\system32\drivers\MBfilt64.sys []
R3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETw5s64.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys []
R3 StillCam;Treiber für serielle Digitalkamera; C:\windows\system32\DRIVERS\serscan.sys []
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys []
S0 snapman;Acronis Snapshots Manager; C:\windows\system32\DRIVERS\snapman.sys [2012-03-11 96320]
S3 athrusb;Atheros Wireless LAN USB device driver; C:\windows\system32\DRIVERS\athrxusb.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\windows\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\windows\System32\Drivers\btcusb.sys []
S3 BTHPORT;Bluetooth-Porttreiber; C:\windows\System32\Drivers\BTHport.sys []
S3 btnetBUs;Bluetooth PAN Bus Service; C:\windows\System32\Drivers\btnetBus.sys []
S3 csr_a2dp;Bluetooth-AV-Profil; C:\windows\system32\drivers\bthav.sys []
S3 EsgScanner;EsgScanner; C:\windows\system32\DRIVERS\EsgScanner.sys []
S3 EUCR;EUCR; C:\windows\system32\DRIVERS\EUCR6SK.SYS []
S3 FTDIBUS;USB Serial Converter Driver; C:\windows\system32\drivers\ftdibus.sys []
S3 FTSER2K;USB Serial Port Driver; C:\windows\system32\drivers\ftser2k.sys []
S3 GemCCID;GemCCID; C:\windows\System32\Drivers\GemCCID.sys []
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\windows\System32\Drivers\IvtBtBus.sys []
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\windows\system32\DRIVERS\MarvinBus64.sys []
S3 mdf16;mdf16; \??\C:\Users\Jaro\AppData\Local\Temp\mdf16.sys []
S3 MGHwCtrl;MGHwCtrl; \??\C:\Program Files\msi\msi Software Install\MGHwCtrl.sys []
S3 mvd23;mvd23; \??\C:\Users\Jaro\AppData\Local\Temp\mvd23.sys []
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\windows\system32\DRIVERS\netaapl64.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys []
S3 RFCOMM;Bluetooth-Gerät (RFCOMM-Protokoll-TDI); C:\windows\system32\DRIVERS\rfcomm.sys []
S3 RkHit;RkHit; \??\C:\windows\system32\drivers\RKHit.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\windows\System32\Drivers\RootMdm.sys []
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys []
S3 smserial;smserial; C:\windows\system32\DRIVERS\SmSerl64.sys []
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys []
S3 usbscan;USB-Scannertreiber; C:\windows\system32\DRIVERS\usbscan.sys []
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys []
S3 VComm;Virtual Serial port driver; C:\windows\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\windows\System32\Drivers\VcommMgr.sys []
S3 VHidMinidrv;Bluetooth HID Device Service; C:\windows\system32\drivers\VHIDMini.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\windows\system32\DRIVERS\wdcsam64.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9; C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-18 226440]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2015-12-18 109520]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2011-05-24 1840128]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 160784]
R2 lmab_device;lmab_device; C:\windows\system32\LMabcoms.exe [2010-09-16 593920]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30
268824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe []
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-05-05 1604200]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30
2320920]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe []
S2 AirPrint;AirPrint; C:\AirPrint\airprint.exe [2012-11-14 234784]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2011-08-26 74360]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
S3 gupdatem;Google Update-Dienst (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-18 194032]
S3 HP DS Service;HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [2011-10-17 13824]
S3 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2012-05-02 164864]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe /V []
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PrintNotify;@C:\windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe []
S4 aspnet_state;ASP.NET-Zustandsdienst; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[2014-04-12 139944]
-----------------EOF-----------------
muj notebook se znacne zpomalil. V Google Chrome zacali nekontrolovane vyskakovat okna s reklamou. nedala se zavrit. Chrome jsem odinstaloval pouzivam Explorer. Take nesel nastartovat iTunes. Ten jsem take odinstaloval. Bojim se kompletni nove istalace a proto se na Vas obracim, jestli by nesel stavajici System zachranit.
Ziji stridave ve Svycarsku a v Cechach, proto ten nemecky operacni System.
Dekuji
J. Kohout
# AdwCleaner v5.030 - Bericht erstellt am 29/01/2016 um 17:07:27
# Aktualisiert am 17/01/2016 von Xplode
# Datenbank : 2016-01-25.3 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Jaro - JARO-MSI
# Gestartet von : C:\Users\Jaro\Desktop\adwcleaner_5.030.exe
# Option : Löschen
# Unterstützung : http://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\SmartPCFixer
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\SmartPCFixer
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [857 Bytes] ##########
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jaro at 2016-01-29 17:19:16
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 42 GB (15%) free of 280 GB
Total RAM: 3886 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:20:15, on 29.01.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18163)
Boot mode: Normal
Running processes:
C:\Users\Jaro\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Jaro\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\Jaro.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jaro\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-21-333469964-755384592-343417231-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-333469964-755384592-343417231-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: Dropbox.lnk = Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Adobe Acrobat - Schnellstart.lnk = ?
O4 - Global Startup: AutoCAD-Startbeschleuniger.lnk = C:\Program Files (x86)\Common Files\Autodesk Shared\acstart16.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office
\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} (20-20 3D Viewer for IKEA) - http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
O16 - DPF: {33415AC7-AFFA-4D55-B41C-C64C0D07DFCA} (Hewlett-Packard Printer Diagnostics) - http://h50203.www5.hp.com/HPISWeb/Custo ... anager.CAB
O16 - DPF: {82E5DF24-51E8-47CD-864A-F4BD5005AA73} (iCloud Web App Plugin) - https://www.icloud.com/system/iCloud.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (file missing)
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer
\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AirPrint - Apple Inc. - C:\AirPrint\airprint.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Autodesk Licensing Service - Autodesk, Inc. - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP DS Service - Hewlett-Packard Company - C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology
\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: lmab_device - - C:\windows\system32\LMabcoms.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine
Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine
Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: CryptoPlus XME Engine Service (xmengine service) - Monet+, a.s. - C:\windows\SysWOW64\xmesrv.exe
--
End of file - 12764 bytes
======Scheduled tasks folder======
C:\windows\tasks\DropboxUpdateTaskUserS-1-5-21-333469964-755384592-343417231-1001Core.job - C:\Users\Jaro\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\windows\tasks\DropboxUpdateTaskUserS-1-5-21-333469964-755384592-343417231-1001UA.job - C:\Users\Jaro\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua
/installsource scheduler
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-27 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-18 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-23 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-27 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-23 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-18 7021880]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2015-08-06 421888]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-12-22 596528]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2015-10-21 60688]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2015-10-21 103696]
"OneDrive"=C:\Users\Jaro\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-16 551112]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Acrobat - Schnellstart.lnk - C:\windows\Installer\{AC76BA86-1033-F400-7760-100000000002}\SC_Acrobat.exe
AutoCAD-Startbeschleuniger.lnk - C:\Program Files (x86)\Common Files\Autodesk Shared\acstart16.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Users\Jaro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Jaro\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"VIDC.IV31"=ir32_32.dll
"VIDC.IV32"=ir32_32.dll
"VIDC.IV41"=ir41_32.ax
"VIDC.IV50"=ir50_32.dll
"vidc.XVID"=xvidvfw.dll
"VIDC.ACDV"=ACDV.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"msacm.lame"=lame.ax
"vidc.dvsd"=mcdvd_32.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
"vidc.DIVX"=DivX.dll
"vidc.VP60"=vp6vfw.dll
"vidc.VP61"=vp6vfw.dll
"vidc.VP62"=vp6vfw.dll
"vidc.LAGS"=lagarith.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - "C:\windows\system32\NOTEPAD.EXE" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2016-01-29 17:19:16 ----D---- C:\rsit
2016-01-29 17:19:16 ----D---- C:\Program Files (x86)\trend micro
2016-01-29 16:48:12 ----HD---- C:\OneDriveTemp
2016-01-27 10:57:16 ----D---- C:\Program Files (x86)\Common Files\Java
2016-01-27 10:56:53 ----D---- C:\Users\Jaro\AppData\Roaming\Sun
2016-01-27 10:56:30 ----A---- C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2016-01-17 10:21:53 ----ASH---- C:\pagefile.sys
2016-01-14 11:52:32 ----A---- C:\windows\SysWOW64\schannel.dll
2016-01-14 11:52:32 ----A---- C:\windows\SysWOW64\ntoskrnl.exe
2016-01-14 11:52:32 ----A---- C:\windows\SysWOW64\kerberos.dll
2016-01-14 11:52:31 ----A---- C:\windows\SysWOW64\wdigest.dll
2016-01-14 11:52:31 ----A---- C:\windows\SysWOW64\rpcrt4.dll
2016-01-14 11:52:31 ----A---- C:\windows\SysWOW64\ntkrnlpa.exe
2016-01-14 11:52:31 ----A---- C:\windows\SysWOW64\ncrypt.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\TSpkg.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\sspicli.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\secur32.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\ntvdm64.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\ntdll.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\msv1_0.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\kernel32.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\cryptbase.dll
2016-01-14 11:52:30 ----A---- C:\windows\SysWOW64\credssp.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-14 11:52:29 ----AH---- C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\wow32.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\user.exe
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\srclient.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\setup16.exe
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\msobjs.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\msaudite.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\KernelBase.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\instnm.exe
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\auditpol.exe
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\apisetschema.dll
2016-01-14 11:52:29 ----A---- C:\windows\SysWOW64\adtschema.dll
2016-01-14 11:04:14 ----HD---- C:\$SysReset
2016-01-14 09:24:00 ----D---- C:\SSB2000_neu
2016-01-14 08:50:19 ----A---- C:\windows\SysWOW64\WMVDECOD.DLL
2016-01-14 08:50:19 ----A---- C:\windows\SysWOW64\msmpeg2adec.dll
2016-01-14 08:50:17 ----A---- C:\windows\SysWOW64\WMADMOD.DLL
2016-01-14 08:50:17 ----A---- C:\windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-14 08:50:15 ----A---- C:\windows\SysWOW64\WMVSDECD.DLL
2016-01-14 08:50:15 ----A---- C:\windows\SysWOW64\WMSPDMOD.DLL
2016-01-14 08:50:15 ----A---- C:\windows\SysWOW64\WMADMOE.DLL
2016-01-14 08:50:15 ----A---- C:\windows\SysWOW64\mf.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\WMVXENCD.DLL
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\WMVENCOD.DLL
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\wmpmde.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\quartz.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\qdvd.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\evr.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\devenum.dll
2016-01-14 08:50:13 ----A---- C:\windows\SysWOW64\COLORCNV.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\WMVSENCD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\WMSPDMOE.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\VIDRESZR.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\rrinstaller.exe
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\qasf.dll
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\msmpeg2vdec.dll
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MPG4DECD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MP4SDECD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MP43DECD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MP3DMOD.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\MFWMAAEC.DLL
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\mfvdsp.dll
2016-01-14 08:50:12 ----A---- C:\windows\SysWOW64\mfplat.dll
2016-01-14 08:50:11 ----A---- C:\windows\SysWOW64\mfps.dll
2016-01-14 08:50:11 ----A---- C:\windows\SysWOW64\mfpmp.exe
2016-01-14 08:50:11 ----A---- C:\windows\SysWOW64\mferror.dll
2016-01-14 08:50:11 ----A---- C:\windows\SysWOW64\ksuser.dll
2016-01-14 08:50:02 ----A---- C:\windows\SysWOW64\mapistub.dll
2016-01-14 08:50:02 ----A---- C:\windows\SysWOW64\mapi32.dll
2016-01-14 08:50:02 ----A---- C:\windows\SysWOW64\fixmapi.exe
2016-01-14 08:50:00 ----A---- C:\windows\SysWOW64\qedit.dll
2016-01-14 08:49:52 ----A---- C:\windows\SysWOW64\iernonce.dll
2016-01-14 08:49:52 ----A---- C:\windows\SysWOW64\ieetwproxystub.dll
2016-01-14 08:49:51 ----A---- C:\windows\SysWOW64\mshtmled.dll
2016-01-14 08:49:50 ----A---- C:\windows\SysWOW64\MshtmlDac.dll
2016-01-14 08:49:50 ----A---- C:\windows\SysWOW64\iertutil.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\vbscript.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\urlmon.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\occache.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-14 08:49:49 ----A---- C:\windows\SysWOW64\iedkcs32.dll
2016-01-14 08:49:48 ----A---- C:\windows\SysWOW64\dxtrans.dll
2016-01-14 08:49:47 ----A---- C:\windows\SysWOW64\mshtml.dll
2016-01-14 08:49:47 ----A---- C:\windows\SysWOW64\msfeeds.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\jsproxy.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\jscript9diag.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\jscript.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\iesetup.dll
2016-01-14 08:49:46 ----A---- C:\windows\SysWOW64\dxtmsft.dll
2016-01-14 08:49:45 ----A---- C:\windows\SysWOW64\ieui.dll
2016-01-14 08:49:45 ----A---- C:\windows\SysWOW64\ieframe.dll
2016-01-14 08:49:44 ----A---- C:\windows\SysWOW64\mshtmlmedia.dll
2016-01-14 08:49:43 ----A---- C:\windows\SysWOW64\webcheck.dll
2016-01-14 08:49:43 ----A---- C:\windows\SysWOW64\jscript9.dll
2016-01-14 08:49:43 ----A---- C:\windows\SysWOW64\ieUnatt.exe
2016-01-14 08:49:43 ----A---- C:\windows\SysWOW64\ieapfltr.dll
2016-01-14 08:49:42 ----A---- C:\windows\SysWOW64\wininet.dll
2016-01-14 08:49:41 ----A---- C:\windows\SysWOW64\msrating.dll
2016-01-14 08:48:24 ----A---- C:\windows\SysWOW64\advapi32.dll
2016-01-14 08:48:20 ----A---- C:\windows\SysWOW64\gdi32.dll
2016-01-09 14:11:36 ----D---- C:\AdwCleaner
2016-01-08 19:43:03 ----A---- C:\autoexec.bat
2016-01-08 16:36:41 ----D---- C:\ProgramData\Malwarebytes
2016-01-08 14:56:03 ----D---- C:\Program Files (x86)\Common Files\Skype
======List of files/folders modified in the last 1 month======
2016-01-29 17:19:16 ----RD---- C:\Program Files (x86)
2016-01-29 17:11:35 ----D---- C:\Users\Jaro\AppData\Roaming\Dropbox
2016-01-29 17:10:39 ----D---- C:\windows\Temp
2016-01-29 17:09:07 ----A---- C:\windows\SysWOW64\log.txt
2016-01-29 17:03:01 ----D---- C:\windows\System32
2016-01-29 17:03:01 ----D---- C:\windows\inf
2016-01-29 17:02:04 ----D---- C:\windows\Prefetch
2016-01-29 16:47:05 ----D---- C:\Windows
2016-01-29 16:44:48 ----SHD---- C:\Config.Msi
2016-01-29 16:43:05 ----SHD---- C:\windows\Installer
2016-01-29 16:42:48 ----D---- C:\windows\SysWOW64
2016-01-29 16:42:34 ----RSD---- C:\windows\Fonts
2016-01-29 16:41:41 ----SHD---- C:\System Volume Information
2016-01-29 16:39:44 ----D---- C:\ProgramData\Apple
2016-01-29 16:36:52 ----SD---- C:\ProgramData\Microsoft
2016-01-29 16:36:52 ----D---- C:\Program Files (x86)\Microsoft
2016-01-29 16:28:46 ----D---- C:\Program Files (x86)\Google
2016-01-29 16:27:38 ----D---- C:\Program Files
2016-01-29 16:23:47 ----D---- C:\Program Files (x86)\iTunes
2016-01-28 19:34:04 ----D---- C:\Users\Jaro\AppData\Roaming\Skype
2016-01-27 10:57:16 ----D---- C:\Program Files (x86)\Common Files
2016-01-27 10:55:57 ----D---- C:\ProgramData\Oracle
2016-01-27 10:55:53 ----D---- C:\Program Files (x86)\Java
2016-01-23 09:15:38 ----HD---- C:\ProgramData
2016-01-15 18:19:53 ----D---- C:\windows\pss
2016-01-15 18:03:36 ----D---- C:\Program Files (x86)\Common Files\Nero
2016-01-15 18:03:02 ----D---- C:\ProgramData\Nero
2016-01-15 17:49:28 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-01-15 17:38:13 ----D---- C:\Program Files (x86)\Common Files\FlashIntegro
2016-01-15 17:35:59 ----D---- C:\ProgramData\Sophos
2016-01-15 08:40:32 ----D---- C:\windows\winsxs
2016-01-15 08:29:24 ----D---- C:\windows\SysWOW64\de-DE
2016-01-15 08:29:23 ----D---- C:\windows\SysWOW64\en-US
2016-01-15 08:28:56 ----D---- C:\Program Files (x86)\Internet Explorer
2016-01-15 08:28:31 ----D---- C:\windows\AppPatch
2016-01-15 08:23:21 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2016-01-14 18:33:04 ----D---- C:\ProgramData\Microsoft Help
2016-01-14 18:23:24 ----D---- C:\windows\debug
2016-01-14 18:18:29 ----A---- C:\windows\win.ini
2016-01-14 10:37:55 ----D---- C:\windows\Logs
2016-01-14 09:26:48 ----D---- C:\SSB2000
2016-01-08 18:59:08 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2016-01-08 18:31:47 ----D---- C:\windows\L2Schemas
2016-01-08 18:30:18 ----D---- C:\windows\Tasks
2016-01-08 14:56:08 ----D---- C:\ProgramData\Skype
2016-01-08 14:56:03 ----RD---- C:\Program Files (x86)\Skype
2016-01-03 16:39:57 ----D---- C:\Program Files (x86)\QuickTime
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;Avast! Firewall Driver; C:\windows\system32\DRIVERS\aswNdisFlt.sys []
R0 aswRvrt;avast! Revert; C:\windows\SysWOW64\drivers\aswRvrt.sys []
R0 aswVmm;avast! VM Monitor; C:\windows\SysWOW64\drivers\aswVmm.sys []
R0 BtHidBus;Bluetooth HID Bus Service; C:\windows\System32\Drivers\BtHidBus.sys []
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys []
R0 PxHlpa64;PxHlpa64; C:\windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys []
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys []
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys []
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys []
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys []
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys []
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys []
R3 avmaura;AVM USB-Fernanschluss; C:\windows\system32\DRIVERS\avmaura.sys []
R3 BthAvrcp;Bluetooth-AVRCP-Profil; C:\windows\system32\DRIVERS\BthAvrcp.sys []
R3 BthEnum;Bluetooth-Anforderungsblocktreiber; C:\windows\system32\DRIVERS\BthEnum.sys []
R3 BthPan;Bluetooth-Gerät (PAN); C:\windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;USB-Treiber für Bluetooth-Funkgerät; C:\windows\System32\Drivers\BTHUSB.sys []
R3 ETD;ELAN PS/2 Port Input Device; C:\windows\system32\DRIVERS\ETD.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys []
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys []
R3 Impcd;Impcd; C:\windows\system32\DRIVERS\Impcd.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys []
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys []
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\windows\system32\DRIVERS\LHidFilt.Sys []
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\windows\system32\DRIVERS\LMouFilt.Sys []
R3 MBfilt;MBfilt; C:\windows\system32\drivers\MBfilt64.sys []
R3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETw5s64.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys []
R3 StillCam;Treiber für serielle Digitalkamera; C:\windows\system32\DRIVERS\serscan.sys []
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys []
S0 snapman;Acronis Snapshots Manager; C:\windows\system32\DRIVERS\snapman.sys [2012-03-11 96320]
S3 athrusb;Atheros Wireless LAN USB device driver; C:\windows\system32\DRIVERS\athrxusb.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\windows\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\windows\System32\Drivers\btcusb.sys []
S3 BTHPORT;Bluetooth-Porttreiber; C:\windows\System32\Drivers\BTHport.sys []
S3 btnetBUs;Bluetooth PAN Bus Service; C:\windows\System32\Drivers\btnetBus.sys []
S3 csr_a2dp;Bluetooth-AV-Profil; C:\windows\system32\drivers\bthav.sys []
S3 EsgScanner;EsgScanner; C:\windows\system32\DRIVERS\EsgScanner.sys []
S3 EUCR;EUCR; C:\windows\system32\DRIVERS\EUCR6SK.SYS []
S3 FTDIBUS;USB Serial Converter Driver; C:\windows\system32\drivers\ftdibus.sys []
S3 FTSER2K;USB Serial Port Driver; C:\windows\system32\drivers\ftser2k.sys []
S3 GemCCID;GemCCID; C:\windows\System32\Drivers\GemCCID.sys []
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\windows\System32\Drivers\IvtBtBus.sys []
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\windows\system32\DRIVERS\MarvinBus64.sys []
S3 mdf16;mdf16; \??\C:\Users\Jaro\AppData\Local\Temp\mdf16.sys []
S3 MGHwCtrl;MGHwCtrl; \??\C:\Program Files\msi\msi Software Install\MGHwCtrl.sys []
S3 mvd23;mvd23; \??\C:\Users\Jaro\AppData\Local\Temp\mvd23.sys []
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\windows\system32\DRIVERS\netaapl64.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys []
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys []
S3 RFCOMM;Bluetooth-Gerät (RFCOMM-Protokoll-TDI); C:\windows\system32\DRIVERS\rfcomm.sys []
S3 RkHit;RkHit; \??\C:\windows\system32\drivers\RKHit.sys []
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\windows\System32\Drivers\RootMdm.sys []
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys []
S3 smserial;smserial; C:\windows\system32\DRIVERS\SmSerl64.sys []
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys []
S3 usbscan;USB-Scannertreiber; C:\windows\system32\DRIVERS\usbscan.sys []
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys []
S3 VComm;Virtual Serial port driver; C:\windows\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\windows\System32\Drivers\VcommMgr.sys []
S3 VHidMinidrv;Bluetooth HID Device Service; C:\windows\system32\drivers\VHIDMini.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\windows\system32\DRIVERS\wdcsam64.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9; C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-18 226440]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2015-12-18 109520]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2011-05-24 1840128]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 160784]
R2 lmab_device;lmab_device; C:\windows\system32\LMabcoms.exe [2010-09-16 593920]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30
268824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe []
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-05-05 1604200]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30
2320920]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe []
S2 AirPrint;AirPrint; C:\AirPrint\airprint.exe [2012-11-14 234784]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2011-08-26 74360]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
S3 gupdatem;Google Update-Dienst (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-18 194032]
S3 HP DS Service;HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [2011-10-17 13824]
S3 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2012-05-02 164864]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe /V []
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PrintNotify;@C:\windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe []
S4 aspnet_state;ASP.NET-Zustandsdienst; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
[2014-04-12 139944]
-----------------EOF-----------------