Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Padající systém, padající browser

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Pakl
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 13 lis 2007 19:17

Padající systém, padající browser

#1 Příspěvek od Pakl »

Zdravím rádce. Před měsícem jsem přeinstaloval celý systém (zakoupil jsem disk SSD). Vše bylo OK, po čase začal padat Chrome i Firefox (nejčastěji do 5 minut od spuštění stroje, někdy i později). Pak občas začal padat celý systém - na zlomek vteřiny malé barevné proužky přes celý monitor, pak restart stroje. Současně hned po reinstalaci nefungoval správně režim spánku (stroj se uspal, po novém spuštění černá obrazovka, pomohl jen restart). Po odinistalaci Catalyst Control Centr začal režim spánku pracovat (většinou), ale systém padá stále - přibližně jednou za dva dny. Nejprve jsem používal pouze vnitřní FW Win7, žádný AV (nechodím na špatné stránky, neotvírám přílohy neznámé nebo exe apod.), dnes jsem se přemohl a instaloval Aviru Antivir (Free) a PrivateFareweall. Avira našla 5y "hidden files", po restartu a druhé kontrole nic. Že Avira občas nachází "hidden" vím již několik let. Nevím, zda se jedná o problém ovladačů (aktualizované Drive Booesterem), problém HW (grafika) nebo snad havěť? Přikládám RSIT a velký dík.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Pavel at 2014-01-17 23:47:31
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 87 GB (71%) free of 122 GB
Total RAM: 5120 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:47:51, on 17.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\BitTorrent Sync\BTSync.exe
C:\Utility\HotkeyP\HotkeyP.exe
C:\Program Files (x86)\Windows Sidebar\sidebar.exe
C:\Program Files\TrueCrypt\TrueCrypt.exe
C:\Program Files (x86)\JetToolBar\JetTB.exe
C:\Users\Pavel\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Users\Pavel\AppData\Roaming\Wuala\Wuala.exe
C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\DisplayFusion\DisplayFusionHookx86.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\Pavel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Bonus.SSR.FR10] "C:\Program Files (x86)\ABBYY FineReader 10\Bonus.ScreenshotReader.exe" /autorun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Privatefirewall] C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\PFGUI.exe
O4 - HKCU\..\Run: [Wunderlist] "C:\Program Files (x86)\Wunderlist2\Wunderlist.exe" /silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Zoner Photo Studio Service 16] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"
O4 - HKCU\..\Run: [DisplayFusion] "C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe"
O4 - HKCU\..\Run: [BitTorrent Sync] "C:\Program Files (x86)\BitTorrent Sync\BTSync.exe" /MINIMIZED
O4 - HKCU\..\Run: [HotkeyP] C:\Utility\HotkeyP\HotkeyP.exe 0
O4 - HKCU\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TrueCrypt] "C:\Program Files\TrueCrypt\TrueCrypt.exe" /q preferences /a logon
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Dropbox.lnk = Pavel\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Wuala.lnk = Pavel\AppData\Roaming\Wuala\Wuala.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Global Startup: jetToolBar.lnk = C:\Program Files (x86)\JetToolBar\JetTB.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést vybrané vazby do Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést vybrané vazby do existujícího PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Převést výběr do Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Převést výběr do existujícího PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Přidat do stávajícího PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 10 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.10.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fb_inet_server.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Privacyware network service (PFNet) - Privacyware/PWI, Inc. - C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\pfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14149 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\pfsvc.exe"
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fb_inet_server.exe" -s DefaultInstance
"C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe"
"C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
"C:\Program Files (x86)\Wunderlist2\Wunderlist.exe" /silent
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe"
"C:\Program Files (x86)\BitTorrent Sync\BTSync.exe" /MINIMIZED
"C:\Utility\HotkeyP\HotkeyP.exe" 0
"C:\Program Files (x86)\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\TrueCrypt\TrueCrypt.exe" /q preferences /a logon
"C:\Program Files (x86)\JetToolBar\JetTB.exe"
"C:\Users\Pavel\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Users\Pavel\AppData\Roaming\Wuala\Wuala.exe" -silent
"C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
"C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe"
"C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\PFGUI.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000005c0
"C:\Program Files (x86)\DisplayFusion\DisplayFusionHookx86.exe" 131986*1259dea0-ca8d-4f8e-b47e-810f1d64bfd0*C:\Program Files (x86)\DisplayFusion\Hooks\DisplayFusionHookx86_032FB21F-4D7E-4601-9CC1-79186AC25B52.dll
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="7028.0.2046092232\1278932888" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,13,23 --gpu-vendor-id=0x1002 --gpu-device-id=0x68f9 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.251.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --instant-process --disable-html-notifications --enable-software-compositing --channel="7028.1.293441966\1376628603" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="7028.2.2021695409\1593017372" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="7028.4.1281603384\980808455" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="7028.5.1783412750\1107309742" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="7028.6.1284612634\1587703494" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="7028.10.1583444765\1338590272" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/DeferBackgroundExtensionCreation/RateLimited/EmbeddedSearch/Group1 pct:10a stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/ManagedModeLaunch/Active/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_77/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --disable-html-notifications --enable-software-compositing --channel="7028.15.162472258\273358607" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\totalcmd\TOTALCMD.EXE"
"F:\Install\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\Driver Booster Update.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\Profiles\djxule3r.default-1389378628797

prefs.js - "browser.startup.homepage" - "https://mail.google.com/mail/u/0/#inbox ... der?tab=wc"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.43 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 12.0.0.43 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL


C:\Users\Pavel\AppData\Roaming\Mozilla\Firefox\Profiles\djxule3r.default-1389378628797\extensions\
support@lastpass.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23 72336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-17 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23 321120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-17 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23 321120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2523-07-31 13662936]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2012-09-24 404280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Wunderlist"=C:\Program Files (x86)\Wunderlist2\Wunderlist.exe [2013-12-02 13021792]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14 20584608]
"Zoner Photo Studio Service 16"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2013-09-16 800280]
"DisplayFusion"=C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [2011-06-01 1949088]
"BitTorrent Sync"=C:\Program Files (x86)\BitTorrent Sync\BTSync.exe [2013-12-17 1648488]
"HotkeyP"=C:\Utility\HotkeyP\HotkeyP.exe [2011-09-23 147456]
"Sidebar"=C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"TrueCrypt"=C:\Program Files\TrueCrypt\TrueCrypt.exe [2013-12-17 1516496]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2006-10-23 620152]
""= []
"Bonus.SSR.FR10"=C:\Program Files (x86)\ABBYY FineReader 10\Bonus.ScreenshotReader.exe [2009-11-30 940808]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"TrueImageMonitor.exe"=C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2012-09-24 6036056]
"AcronisTibMounterMonitor"=C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2012-07-24 943344]
"Avira Systray"=C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [2013-12-16 174648]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-12-09 684600]
"Privatefirewall"=C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\PFGUI.exe [2013-12-17 3048480]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Acrobat Speed Launcher.lnk - C:\Windows\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe
Adobe Acrobat Synchronizer.lnk - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
jetToolBar.lnk - C:\Program Files (x86)\JetToolBar\JetTB.exe

C:\Users\Pavel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Pavel\AppData\Roaming\Dropbox\bin\Dropbox.exe
Wuala.lnk - C:\Users\Pavel\AppData\Roaming\Wuala\Wuala.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll [2012-04-09 190480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll [2012-04-09 190480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PFNet]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=181

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2543-03-15 11:17:58 ----A---- C:\Windows\system32\nvconrm.dll
2543-03-15 11:17:58 ----A---- C:\Windows\system32\fdco2.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoZht.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoSv.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoPtb.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoNl.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoJa.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoFr.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoEsm.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoENU.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\NvRCoDe.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\nvraiins.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\nvraidco.dll
2535-03-05 10:33:19 ----A---- C:\Windows\system32\drivers\nvstor64.sys
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoZhc.dll
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoRu.dll
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoNo.dll
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoKo.dll
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoIt.dll
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoFi.dll
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoEs.dll
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoEng.dll
2534-02-14 03:49:44 ----A---- C:\Windows\system32\NvRCoDa.dll
2523-07-31 06:48:49 ----A---- C:\Windows\SYSWOW64\ativvsva.dat
2523-07-31 06:48:49 ----A---- C:\Windows\SYSWOW64\atipblag.dat
2523-07-31 06:48:49 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\toseaeapo64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\tosade.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\tepeqapo64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\tadefxapo.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\SRSTSX64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\SRSHP64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\slprp64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\slcnt64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\sl3apo64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\SFNHK64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\SFCOM64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\SFAPO64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\RTEEL64A.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\RTEED64A.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\RP3DHT64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\R4EEP64A.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\R4EEL64A.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\R4EED64A.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\KAAPORT64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\FMAPO64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DDPO64A.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\DDPA64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\ativvsva.dat
2523-07-31 06:48:49 ----A---- C:\Windows\system32\atiuxp64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\atiumd6a.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\atiumd64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\atiu9p64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\atipblag.dat
2523-07-31 06:48:49 ----A---- C:\Windows\system32\ATIODCLI.exe
2523-07-31 06:48:49 ----A---- C:\Windows\system32\atidxx64.dll
2523-07-31 06:48:49 ----A---- C:\Windows\system32\amdocl_ld64.exe
2523-07-31 06:48:49 ----A---- C:\Windows\system32\amdocl_as64.exe
2523-07-31 06:48:49 ----A---- C:\Windows\system32\AERTAC64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2522-07-12 00:05:14 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll
2522-07-12 00:05:14 ----A---- C:\Windows\SYSWOW64\ativvsvl.dat
2522-07-12 00:05:14 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2522-07-12 00:05:14 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2522-07-12 00:05:14 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2522-07-12 00:05:14 ----A---- C:\Windows\SYSWOW64\amdocl_ld32.exe
2522-07-12 00:05:14 ----A---- C:\Windows\SYSWOW64\amdocl_as32.exe
2522-07-12 00:05:14 ----A---- C:\Windows\system32\tossaeapo64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\tosasfapo64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\tadefxapo264.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\SRSWOW64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\SRSTSH64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\sltech64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\SFSS_APO.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\RtkCfg64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\RtkApi64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\RTEEP64A.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\RTEEG64A.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\RP3DAA64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\R4EEG64A.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\R4EEA64A.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\MISS_APO.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DDPP64A.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\DDPD64A.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\audioLibVc.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\ativvsvl.dat
2522-07-12 00:05:14 ----A---- C:\Windows\system32\ATIODE.exe
2522-07-12 00:05:14 ----A---- C:\Windows\system32\aticfx64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\atibtmon.exe
2522-07-12 00:05:14 ----A---- C:\Windows\system32\AERTAR64.dll
2522-07-12 00:05:14 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2426-05-10 03:08:03 ----A---- C:\Windows\system32\RtkAPO64.dll
2426-05-10 03:08:03 ----A---- C:\Windows\system32\RTCOM64.dll
2426-05-10 03:08:03 ----A---- C:\Windows\system32\RCoRes64.dat
2426-05-10 03:08:03 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2426-05-10 03:08:03 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2426-05-10 03:08:03 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2426-05-10 03:08:03 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2426-05-10 03:08:03 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2426-05-10 03:08:03 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2425-04-20 20:24:28 ----A---- C:\Windows\system32\WavesGUILib64.dll
2425-04-20 20:24:28 ----A---- C:\Windows\system32\RtPgEx64.dll
2425-04-20 20:24:28 ----A---- C:\Windows\system32\RtDataProc64.dll
2425-04-20 20:24:28 ----A---- C:\Windows\system32\RCoInstII64.dll
2425-04-20 20:24:28 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2425-04-20 20:24:28 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2425-04-20 20:24:28 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2425-04-20 20:24:28 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2425-04-20 20:24:28 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-01-17 23:47:34 ----D---- C:\Program Files\trend micro
2014-01-17 23:47:31 ----D---- C:\rsit
2014-01-17 19:25:11 ----D---- C:\Users\Pavel\AppData\Roaming\Avira
2014-01-17 19:17:52 ----A---- C:\Windows\system32\drivers\pwipf6.sys
2014-01-17 19:17:49 ----A---- C:\Windows\ODBC.INI
2014-01-17 19:17:47 ----D---- C:\ProgramData\Privacyware
2014-01-17 19:17:47 ----D---- C:\Program Files (x86)\Privacyware
2014-01-17 19:14:58 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2014-01-17 19:14:58 ----A---- C:\Windows\system32\drivers\avipbb.sys
2014-01-17 19:14:58 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2014-01-17 19:11:28 ----D---- C:\ProgramData\Avira
2014-01-17 19:11:28 ----D---- C:\Program Files (x86)\Avira
2014-01-15 09:00:29 ----A---- C:\Windows\system32\win32k.sys
2014-01-15 09:00:29 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-13 14:21:23 ----D---- C:\Program Files\Farpr
2014-01-09 14:14:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-01-09 14:14:02 ----D---- C:\Windows\system32\Macromed
2014-01-09 13:33:57 ----D---- C:\ProgramData\Mozilla
2014-01-09 13:33:57 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-09 13:33:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-01-08 20:17:29 ----D---- C:\Users\Pavel\AppData\Roaming\Macromedia
2014-01-08 20:07:40 ----D---- C:\Users\Pavel\AppData\Roaming\Mozilla
2014-01-06 14:31:28 ----D---- C:\Program Files\Tracker Software
2014-01-04 08:37:21 ----D---- C:\ProgramData\ATI
2013-12-31 10:52:55 ----A---- C:\Windows\SYSWOW64\GDS32.DLL
2013-12-30 17:22:51 ----D---- C:\Users\Pavel\AppData\Roaming\Canon
2013-12-19 13:50:55 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-12-19 13:50:54 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-19 13:50:54 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-19 13:50:54 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-19 13:50:54 ----A---- C:\Windows\system32\ieui.dll
2013-12-19 13:50:53 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-19 13:50:53 ----A---- C:\Windows\system32\iesetup.dll
2013-12-19 13:50:53 ----A---- C:\Windows\system32\iernonce.dll
2013-12-19 13:50:53 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-12-19 13:50:53 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-12-19 13:50:53 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-19 13:50:52 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-12-19 13:50:52 ----A---- C:\Windows\system32\mshtml.dll
2013-12-19 13:50:52 ----A---- C:\Windows\system32\jscript9diag.dll
2013-12-19 13:50:52 ----A---- C:\Windows\system32\ieapfltr.dll
2013-12-19 13:50:51 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-12-19 13:50:51 ----A---- C:\Windows\system32\iertutil.dll
2013-12-19 13:50:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-19 13:50:50 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-19 13:50:50 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-19 13:50:50 ----A---- C:\Windows\system32\wininet.dll
2013-12-19 13:50:50 ----A---- C:\Windows\system32\urlmon.dll
2013-12-19 13:50:49 ----A---- C:\Windows\system32\ieframe.dll
2013-12-19 13:50:48 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-19 13:50:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-19 13:50:46 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-19 13:50:46 ----A---- C:\Windows\system32\jscript9.dll
2013-12-19 13:10:53 ----D---- C:\ProgramData\BibleWorks
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\zlib1.dll
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\unzip32.dll
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\ssce5532.dll
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\patchw32.dll
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\patchw.dll
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\bwplay.exe
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\bwntsend.dll
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\bwnthook.dll
2013-12-19 13:10:49 ----A---- C:\Windows\SYSWOW64\bwbits80.dll
2013-12-19 13:10:01 ----D---- C:\Program Files (x86)\BibleWorks 8
2013-12-19 03:52:23 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-19 03:52:23 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-12-19 03:52:23 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-19 03:52:23 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-12-19 03:52:23 ----A---- C:\Windows\explorer.exe
2013-12-19 03:52:22 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-12-19 03:52:22 ----A---- C:\Windows\system32\spoolsv.exe
2013-12-19 03:52:22 ----A---- C:\Windows\splwow64.exe
2013-12-19 02:59:19 ----D---- C:\Users\Pavel\AppData\Roaming\ATI
2013-12-19 02:59:17 ----D---- C:\Program Files (x86)\AMD AVT
2013-12-19 02:58:39 ----D---- C:\ProgramData\AMD
2013-12-19 02:58:14 ----D---- C:\Program Files\AMD
2013-12-19 02:57:36 ----D---- C:\Program Files (x86)\ATI Technologies
2013-12-19 02:53:22 ----D---- C:\Program Files\ATI
2013-12-18 11:03:38 ----A---- C:\Windows\system32\IEUDINIT.EXE
2013-12-18 11:00:18 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-12-18 11:00:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\url.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-12-18 11:00:14 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\wextract.exe
2013-12-18 11:00:14 ----A---- C:\Windows\system32\webcheck.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\vbscript.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\url.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-12-18 11:00:14 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 11:00:14 ----A---- C:\Windows\system32\pngfilt.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\occache.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\msrating.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\msls31.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\mshtmler.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\MshtmlDac.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\mshta.exe
2013-12-18 11:00:14 ----A---- C:\Windows\system32\msfeedssync.exe
2013-12-18 11:00:14 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\licmgr10.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\jsIntl.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\jscript.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\inseng.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\imgutil.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\iexpress.exe
2013-12-18 11:00:14 ----A---- C:\Windows\system32\iesysprep.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\iepeers.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\iedkcs32.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\ieapfltr.dat
2013-12-18 11:00:14 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\icardie.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\elshyph.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\dxtrans.dll
2013-12-18 11:00:14 ----A---- C:\Windows\system32\dxtmsft.dll
2013-12-18 10:55:04 ----D---- C:\Program Files\CCleaner
2013-12-18 10:40:16 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-18 10:40:15 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-18 10:40:15 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-18 10:40:13 ----A---- C:\Windows\system32\wmp.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-12-18 10:11:44 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-12-18 10:11:44 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\XpsPrint.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\UIAnimation.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\FntCache.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\dxgi.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\DWrite.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\d3d10warp.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\d3d10level9.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\d3d10core.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\d3d10_1.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\d3d10.dll
2013-12-18 10:11:44 ----A---- C:\Windows\system32\d2d1.dll
2013-12-18 08:41:26 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-18 08:41:26 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-12-18 08:41:26 ----A---- C:\Windows\system32\msieftp.dll
2013-12-18 08:41:26 ----A---- C:\Windows\system32\comctl32.dll
2013-12-18 08:41:23 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-12-18 08:41:23 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-12-18 08:41:23 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-12-18 08:41:23 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-12-18 08:41:20 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-12-18 08:41:20 ----A---- C:\Windows\system32\wintrust.dll
2013-12-18 08:41:15 ----A---- C:\Windows\system32\consent.exe
2013-12-18 08:41:15 ----A---- C:\Windows\system32\appinfo.dll
2013-12-18 08:41:12 ----A---- C:\Windows\system32\wwansvc.dll
2013-12-18 08:41:12 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-12-18 08:41:11 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-12-18 08:41:11 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-12-18 08:41:11 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-12-18 08:41:11 ----A---- C:\Windows\system32\cryptsvc.dll
2013-12-18 08:41:11 ----A---- C:\Windows\system32\cryptnet.dll
2013-12-18 08:41:11 ----A---- C:\Windows\system32\crypt32.dll
2013-12-18 08:41:09 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-18 08:41:09 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-18 08:41:08 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-18 08:41:08 ----A---- C:\Windows\system32\tzres.dll
2013-12-18 08:41:02 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-18 08:41:02 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-18 08:41:02 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-12-18 08:41:02 ----A---- C:\Windows\system32\drivers\afd.sys
2013-12-18 08:41:00 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2013-12-18 08:41:00 ----A---- C:\Windows\SYSWOW64\credui.dll
2013-12-18 08:41:00 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-12-18 08:41:00 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-18 08:41:00 ----A---- C:\Windows\system32\credui.dll
2013-12-18 08:41:00 ----A---- C:\Windows\system32\authui.dll
2013-12-18 08:40:59 ----A---- C:\Windows\system32\atmfd.dll
2013-12-18 08:40:58 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-12-18 08:40:58 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-12-18 08:40:58 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-12-18 08:40:58 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-12-18 08:40:58 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-12-18 08:40:58 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-12-18 08:40:58 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-12-18 08:40:58 ----A---- C:\Windows\system32\sspicli.dll
2013-12-18 08:40:58 ----A---- C:\Windows\system32\schannel.dll
2013-12-18 08:40:58 ----A---- C:\Windows\system32\lsasrv.dll
2013-12-18 08:40:58 ----A---- C:\Windows\system32\lpk.dll
2013-12-18 08:40:58 ----A---- C:\Windows\system32\fontsub.dll
2013-12-18 08:40:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-12-18 08:40:58 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-12-18 08:40:58 ----A---- C:\Windows\system32\drivers\cng.sys
2013-12-18 08:40:58 ----A---- C:\Windows\system32\dciman32.dll
2013-12-18 08:40:58 ----A---- C:\Windows\system32\atmlib.dll
2013-12-18 08:40:57 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-12-18 08:40:57 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-12-18 08:40:57 ----A---- C:\Windows\system32\sspisrv.dll
2013-12-18 08:40:57 ----A---- C:\Windows\system32\secur32.dll
2013-12-18 08:40:57 ----A---- C:\Windows\system32\ncrypt.dll
2013-12-18 08:40:57 ----A---- C:\Windows\system32\lsass.exe
2013-12-18 08:40:56 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-12-18 08:40:56 ----A---- C:\Windows\system32\d3d11.dll
2013-12-18 08:40:55 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-12-18 08:40:55 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-12-18 08:40:54 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-12-18 08:40:54 ----A---- C:\Windows\system32\KernelBase.dll
2013-12-18 08:40:54 ----A---- C:\Windows\system32\kernel32.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-18 08:40:53 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-18 08:40:53 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-12-18 08:40:53 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-12-18 08:40:53 ----A---- C:\Windows\system32\winsrv.dll
2013-12-18 08:40:53 ----A---- C:\Windows\system32\smss.exe
2013-12-18 08:40:53 ----A---- C:\Windows\system32\csrsrv.dll
2013-12-18 08:40:53 ----A---- C:\Windows\system32\conhost.exe
2013-12-18 08:40:53 ----A---- C:\Windows\system32\apisetschema.dll
2013-12-18 08:40:49 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-12-18 08:40:49 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-12-18 08:40:49 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-12-18 08:40:49 ----A---- C:\Windows\system32\rpcrt4.dll
2013-12-18 08:40:49 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-12-18 08:40:49 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-12-18 08:40:49 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-12-18 08:40:48 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-12-18 08:40:47 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-12-18 08:40:47 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-12-18 08:40:47 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-12-18 08:40:47 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-12-18 08:40:47 ----A---- C:\Windows\system32\nlasvc.dll
2013-12-18 08:40:47 ----A---- C:\Windows\system32\nlaapi.dll
2013-12-18 08:40:47 ----A---- C:\Windows\system32\netevent.dll
2013-12-18 08:40:47 ----A---- C:\Windows\system32\netcorehc.dll
2013-12-18 08:40:47 ----A---- C:\Windows\system32\ncsi.dll
2013-12-18 08:40:47 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-12-18 08:40:47 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-12-18 08:40:45 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-12-18 08:40:45 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-12-18 08:40:44 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-12-18 08:40:44 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-12-18 08:40:44 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-12-18 08:40:44 ----A---- C:\Windows\system32\WebClnt.dll
2013-12-18 08:40:44 ----A---- C:\Windows\system32\qedit.dll
2013-12-18 08:40:44 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-12-18 08:40:44 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-12-18 08:40:44 ----A---- C:\Windows\system32\davclnt.dll
2013-12-18 08:40:22 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-12-18 08:40:22 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-12-18 08:40:21 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-12-18 08:40:21 ----A---- C:\Windows\system32\mswsock.dll
2013-12-18 08:40:06 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-12-18 08:40:06 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-12-18 08:40:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-12-18 08:40:05 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-12-18 08:40:05 ----A---- C:\Windows\SYSWOW64\user.exe
2013-12-18 08:40:05 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-12-18 08:40:05 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-12-18 08:40:05 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-12-18 08:40:05 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-12-18 08:40:05 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-12-18 08:40:05 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-12-18 08:40:05 ----A---- C:\Windows\system32\wow64.dll
2013-12-18 08:40:05 ----A---- C:\Windows\system32\tdh.dll
2013-12-18 08:40:05 ----A---- C:\Windows\system32\ntdll.dll
2013-12-18 08:40:05 ----A---- C:\Windows\system32\advapi32.dll
2013-12-18 08:39:49 ----A---- C:\Windows\system32\shell32.dll
2013-12-18 08:39:48 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-12-18 08:39:48 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-12-18 08:39:48 ----A---- C:\Windows\system32\shdocvw.dll
2013-12-18 08:39:46 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-12-18 08:39:46 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2013-12-18 08:39:46 ----A---- C:\Windows\system32\win32spl.dll
2013-12-18 08:39:46 ----A---- C:\Windows\system32\taskhost.exe
2013-12-18 08:39:46 ----A---- C:\Windows\system32\gdi32.dll
2013-12-18 08:39:44 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-12-18 08:39:44 ----A---- C:\Windows\system32\cryptdlg.dll
2013-12-18 08:39:43 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-18 08:39:43 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-18 08:39:40 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-12-18 08:39:40 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-12-18 08:39:40 ----A---- C:\Windows\system32\certutil.exe
2013-12-18 08:39:40 ----A---- C:\Windows\system32\certenc.dll
2013-12-18 08:39:36 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-18 08:39:36 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-18 08:39:36 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-18 08:39:36 ----A---- C:\Windows\system32\wscript.exe
2013-12-18 08:39:36 ----A---- C:\Windows\system32\scrrun.dll
2013-12-18 08:39:36 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-12-18 08:39:36 ----A---- C:\Windows\system32\cscript.exe
2013-12-18 08:39:35 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-12-18 08:39:35 ----A---- C:\Windows\system32\cdd.dll
2013-12-18 08:39:23 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-12-18 08:39:23 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-12-18 08:39:23 ----A---- C:\Windows\system32\nshwfp.dll
2013-12-18 08:39:23 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-12-18 08:39:23 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-12-18 08:39:22 ----A---- C:\Windows\system32\scavengeui.dll
2013-12-18 08:27:56 ----D---- C:\Windows\Minidump

======List of files/folders modified in the last 1 month======

2014-01-17 23:47:34 ----RD---- C:\Program Files
2014-01-17 23:46:35 ----D---- C:\Users\Pavel\AppData\Roaming\DisplayFusion
2014-01-17 23:46:11 ----D---- C:\Users\Pavel\AppData\Roaming\Skype
2014-01-17 23:45:49 ----D---- C:\Users\Pavel\AppData\Roaming\KeePass
2014-01-17 23:43:06 ----D---- C:\Users\Pavel\AppData\Roaming\BitTorrent Sync
2014-01-17 23:42:35 ----D---- C:\Windows\System32
2014-01-17 23:42:35 ----D---- C:\Windows\inf
2014-01-17 23:42:35 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-01-17 23:36:57 ----SHD---- C:\System Volume Information
2014-01-17 23:34:06 ----D---- C:\Users\Pavel\AppData\Roaming\Dropbox
2014-01-17 23:31:41 ----D---- C:\Windows\system32\config
2014-01-17 22:50:13 ----D---- C:\Program Files (x86)\KeePass Password Safe 2
2014-01-17 19:20:05 ----D---- C:\Windows\system32\catroot2
2014-01-17 19:18:00 ----SHD---- C:\Windows\Installer
2014-01-17 19:17:55 ----D---- C:\Windows\system32\DriverStore
2014-01-17 19:17:55 ----D---- C:\Windows\system32\catroot
2014-01-17 19:17:52 ----D---- C:\Windows\system32\drivers
2014-01-17 19:17:49 ----D---- C:\Windows
2014-01-17 19:17:47 ----RD---- C:\Program Files (x86)
2014-01-17 19:17:47 ----HD---- C:\ProgramData
2014-01-17 19:17:47 ----D---- C:\Windows\SysWOW64
2014-01-17 19:15:03 ----D---- C:\Windows\Temp
2014-01-17 19:11:26 ----D---- C:\ProgramData\Package Cache
2014-01-16 17:28:38 ----D---- C:\ProgramData\firebird
2014-01-15 13:43:33 ----D---- C:\Windows\Tasks
2014-01-15 11:09:09 ----D---- C:\Program Files (x86)\ABBYY FineReader 10
2014-01-15 11:03:58 ----D---- C:\Windows\winsxs
2014-01-15 10:55:44 ----D---- C:\Windows\debug
2014-01-15 10:55:41 ----A---- C:\Windows\system32\MRT.exe
2014-01-13 11:29:51 ----SD---- C:\Users\Pavel\AppData\Roaming\Microsoft
2014-01-10 16:36:07 ----D---- C:\Users\Pavel\AppData\Roaming\FreeFileSync
2014-01-10 09:47:11 ----D---- C:\Program Files (x86)\Adobe
2014-01-09 14:14:05 ----D---- C:\Windows\system32\Tasks
2014-01-09 13:51:27 ----D---- C:\Utility
2014-01-04 19:56:17 ----D---- C:\Program Files\AXON klient Snapshot
2014-01-04 09:36:12 ----D---- C:\Windows\SYSWOW64\RTCOM
2014-01-04 09:06:06 ----D---- C:\Windows\rescache
2014-01-04 09:04:49 ----D---- C:\Windows\Logs
2014-01-04 08:37:18 ----SHD---- C:\$Recycle.Bin
2014-01-04 08:37:16 ----D---- C:\Windows\Microsoft.NET
2013-12-31 13:28:41 ----HD---- C:\Windows\system32\GroupPolicy
2013-12-31 11:25:55 ----D---- C:\Program Files (x86)\Hesla JB
2013-12-31 10:52:52 ----D---- C:\Program Files (x86)\Firebird
2013-12-19 14:33:45 ----D---- C:\Windows\Panther
2013-12-19 13:55:42 ----D---- C:\Program Files\Internet Explorer
2013-12-19 13:55:42 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-19 13:10:53 ----RSD---- C:\Windows\Fonts
2013-12-19 13:10:00 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-12-19 02:59:15 ----D---- C:\Program Files (x86)\Common Files
2013-12-19 02:57:16 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-12-19 02:56:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-19 02:56:37 ----D---- C:\Windows\system32\cs-CZ
2013-12-19 02:54:58 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-19 02:54:58 ----D---- C:\Windows\system32\en-US
2013-12-18 12:35:54 ----D---- C:\Windows\Prefetch
2013-12-18 12:13:42 ----RSD---- C:\Windows\assembly
2013-12-18 11:04:47 ----D---- C:\Windows\SYSWOW64\migration
2013-12-18 11:04:47 ----D---- C:\Windows\system32\migration
2013-12-18 11:04:47 ----D---- C:\Windows\PolicyDefinitions
2013-12-18 10:46:04 ----D---- C:\Program Files\Windows Media Player
2013-12-18 10:46:04 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-18 10:46:03 ----D---- C:\Windows\AppPatch
2013-12-18 10:46:03 ----D---- C:\Program Files\Windows Defender
2013-12-18 10:46:03 ----D---- C:\Program Files (x86)\Windows Defender
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\it-IT
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-12-18 10:46:01 ----D---- C:\Windows\SYSWOW64\el-GR
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\es-ES
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\de-DE
2013-12-18 10:46:00 ----D---- C:\Windows\SYSWOW64\da-DK
2013-12-18 10:46:00 ----D---- C:\Windows\system32\zh-TW
2013-12-18 10:46:00 ----D---- C:\Windows\system32\zh-HK
2013-12-18 10:46:00 ----D---- C:\Windows\system32\zh-CN
2013-12-18 10:46:00 ----D---- C:\Windows\system32\tr-TR
2013-12-18 10:46:00 ----D---- C:\Windows\system32\sv-SE
2013-12-18 10:46:00 ----D---- C:\Windows\system32\ru-RU
2013-12-18 10:46:00 ----D---- C:\Windows\system32\pt-PT
2013-12-18 10:46:00 ----D---- C:\Windows\system32\pt-BR
2013-12-18 10:46:00 ----D---- C:\Windows\system32\pl-PL
2013-12-18 10:46:00 ----D---- C:\Windows\system32\nl-NL
2013-12-18 10:46:00 ----D---- C:\Windows\system32\nb-NO
2013-12-18 10:46:00 ----D---- C:\Windows\system32\ko-KR
2013-12-18 10:46:00 ----D---- C:\Windows\system32\ja-JP
2013-12-18 10:46:00 ----D---- C:\Windows\system32\it-IT
2013-12-18 10:46:00 ----D---- C:\Windows\system32\hu-HU
2013-12-18 10:46:00 ----D---- C:\Windows\system32\fr-FR
2013-12-18 10:46:00 ----D---- C:\Windows\system32\fi-FI
2013-12-18 10:46:00 ----D---- C:\Windows\system32\es-ES
2013-12-18 10:46:00 ----D---- C:\Windows\system32\el-GR
2013-12-18 10:46:00 ----D---- C:\Windows\system32\de-DE
2013-12-18 10:46:00 ----D---- C:\Windows\system32\da-DK
2013-12-18 10:45:56 ----D---- C:\Program Files\Windows Journal
2013-12-18 09:02:08 ----D---- C:\totalcmd

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fltsrv;Acronis Storage Filter Management; C:\Windows\system32\DRIVERS\fltsrv.sys [2013-12-17 155272]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2535-03-05 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2013-12-17 340104]
R0 tdrpman;Acronis Try&Decide and Restore Points filter; C:\Windows\system32\DRIVERS\tdrpman.sys [2013-12-17 1340040]
R0 tib_mounter;Acronis TIB Mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [2013-12-17 1093256]
R0 vididr;Acronis Virtual Disk; C:\Windows\system32\DRIVERS\vididr.sys [2013-12-17 228488]
R0 vidsflt;Acronis Disk Storage Filter; C:\Windows\system32\DRIVERS\vidsflt.sys [2013-12-17 166024]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-12-09 131576]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-12-09 28600]
R1 cbfs3;cbfs3; \??\C:\Windows\system32\drivers\cbfs3.sys [2012-04-09 352144]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 pwipf6;Privacyware Filter Driver; C:\Windows\system32\DRIVERS\pwipf6.sys [2013-09-29 133152]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 truecrypt;truecrypt; C:\Windows\System32\drivers\truecrypt.sys [2013-12-17 231376]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-12-09 108440]
R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2013-12-17 367200]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-12-06 13207552]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-12-06 626176]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-09-24 94208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2425-04-20 3760344]
R3 NVNET;NVIDIA nForce Ethernet Driver; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-08-12 350952]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 ABBYY.Licensing.FineReader.Professional.10.0;ABBYY FineReader 10 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe [2009-11-25 814344]
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2012-09-24 1127840]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2013-12-17 3692536]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-12-06 239616]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-12-09 440376]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-12-09 440376]
R2 Avira.OE.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [2013-12-16 103480]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fb_inet_server.exe [2013-03-19 3776512]
R2 PFNet;Privacyware network service; C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\pfsvc.exe [2013-12-17 374600]
R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2012-09-14 7024712]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-12-17 654848]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe [2007-03-15 2233400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-16 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-16 257928]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-16 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-05 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-12-16 1255736]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2013-12-09 1011768]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------
Nahoru
Pakl
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 13 lis 2007 19:17

Re: Padající systém, padající browser

#2 Příspěvek od Pakl »

Tak to je poprvé po řadě let, co mně na tomto fóru nikdo neodpověděl déle než týden. Co se změnilo? Udělal jsem někde chybu já?
Problém jsem nakonec snad vyřešil sám, byla to vadná RAM. Dík za mnohou dřívější pomoc.
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Padající systém, padající browser

#3 Příspěvek od vyosek »

Zdravim :)

Spise slo o to, ze to vypadalo na hodne specificky problem a nez tapat a jen tipovat, tak jsme radeji mlceli...

Dekujeme za zpravu a zpusob reseni.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Pakl
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 13 lis 2007 19:17

Re: Padající systém, padající browser

#4 Příspěvek od Pakl »

Děkuji také, nic se neděje, prosím, toto vlákno můžete zamknout, sám to neumím nebo nemohu... Můj dík za všechny předchozí rady v minulých letech byl upřímný, opravdu! tak zase někdy příště... zdravím.
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: Padající systém, padající browser

#5 Příspěvek od vyosek »

Dekuji a tesim se na pripadnou dalsi spolupraci :worship:

A na zaklade Pravidla o zamykani temat :lock:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“