Zdravím,
prosím o kontrolu logu, dochází k náhodnému BSOD. Přikládám logy z RSIT, z Malwarebytes a z AdwCleaner.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Administrátor at 2016-04-17 00:29:19
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 82 GB (48%) free of 172 GB
Total RAM: 16328 MB (81% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:29:31, on 17.4.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18283)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Administrátor.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: (no name) - AutorunsDisabled - (no file)
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.co ... 5.24.0.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: AutorunsDisabled - (no CLSID) - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
--
End of file - 3811 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k imgsvc
taskeng.exe {A092C749-8380-4B0B-8163-92CBDC62B68F}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
"C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
"C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k SDRSVC
"taskhost.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Administrátor\Desktop\d.txt
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4860 CREDAT:275457 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4860 CREDAT:865284 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4860 CREDAT:406637 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4860 CREDAT:4011092 /prefetch:2
"C:\Users\Administrátor\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\AUDIODG.EXE 0x7bc
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26 435320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26 366200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2015-07-08 5595848]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-04-17 8849152]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14 1085656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-09-04 508104]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe -launchedbylogin []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Appset Update]
C:\Users\Administrátor\AppData\Local\Appset\AppsetUpdater\AppSetManager.exe /startscheduler []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EvtMgr6]
C:\Program Files\Logitech\SetPointP\SetPoint.exe [2015-08-26 3113592]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GUDelayStartup]
C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [2016-01-04 36776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Live Update 5]
C:\Program Files (x86)\MSI\Live Update 5\BootStartLiveupdate.exe /reminder []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nero MediaHome 4]
C:\Program Files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe /AUTORUN []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSubscriptionAgent]
C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\osaui.exe [2011-11-16 932160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpAgent]
OpAgent.exe /agent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QIP Internet Guardian]
C:\Users\Administrátor\AppData\Roaming\QipGuard\QipGuard.exe /p []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
D:\HRY\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-04-17 8849152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Samsung Link]
C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-03-01 50670720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
D:\HRY\Steam\Steam.exe [2016-03-31 3077712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20 595480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
C:\Windows\WindowsMobile\wmdcBase.exe [2007-05-31 660360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Administrátor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\ADMINI~1\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Administrátor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Lingea Update Center.lnk]
C:\PROGRA~2\COMMON~1\LINGEA~1\luc.exe [2014-04-18 1692952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Administrátor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Registrace produktu.lnk]
C:\PROGRA~2\COMMON~1\LogiShrd\eReg\SetPoint\eReg.exe [2009-11-16 517384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Administrátor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SA Notify.lnk]
C:\Users\Administra1tor\Desktop\Programy\PORTABLE\sanotify_v0.71\SANotify.jar []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Administrátor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^tlc8zbjrj.lnk]
C:\PROGRA~3\jrjbz8clt.cpp,XXS1 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Administrátor^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^wlb7vea.lnk]
C:\PROGRA~3\aev7blw.cpp,XXS1 []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-09-17 292088]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20 595480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2015-07-02 65992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-04-17 00:29:19 ----D---- C:\rsit
2016-04-17 00:29:19 ----D---- C:\Program Files\trend micro
2016-04-17 00:17:43 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2016-04-17 00:17:27 ----D---- C:\ProgramData\Malwarebytes
2016-04-17 00:17:27 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-04-17 00:17:27 ----A---- C:\Windows\system32\drivers\mwac.sys
2016-04-17 00:17:27 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2016-04-17 00:17:27 ----A---- C:\Windows\system32\drivers\mbam.sys
2016-04-17 00:16:18 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-04-17 00:05:48 ----A---- C:\Windows\system32\SRSWOW64.dll
2016-04-17 00:05:48 ----A---- C:\Windows\system32\SRSTSX64.dll
2016-04-17 00:05:48 ----A---- C:\Windows\system32\SRSTSH64.dll
2016-04-17 00:05:48 ----A---- C:\Windows\system32\SRSHP64.dll
2016-04-17 00:05:47 ----A---- C:\Windows\system32\RtPgEx64.dll
2016-04-17 00:05:47 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2016-04-17 00:05:47 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2016-04-17 00:05:46 ----A---- C:\Windows\system32\SETDB0F.tmp
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RtkCfg64.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RtkApi64.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RTEEP64A.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RTEEL64A.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RTEEG64A.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RTEED64A.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RtDataProc64.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RTCOM64.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RP3DHT64.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RP3DAA64.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RltkAPO64.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\RCoInstII64.dll
2016-04-17 00:05:46 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2016-04-17 00:05:45 ----A---- C:\Windows\SYSWOW64\MBTHX32.dll
2016-04-17 00:05:45 ----A---- C:\Windows\system32\MBWrp64.dll
2016-04-17 00:05:45 ----A---- C:\Windows\system32\MBTHX64.dll
2016-04-17 00:05:45 ----A---- C:\Windows\system32\drivers\MBfilt64.sys
2016-04-17 00:05:43 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2016-04-17 00:05:43 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2016-04-17 00:05:42 ----A---- C:\Windows\system32\FMAPO64.dll
2016-04-17 00:05:40 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-04-17 00:05:40 ----A---- C:\Windows\system32\AERTAR64.dll
2016-04-17 00:05:40 ----A---- C:\Windows\system32\AERTAC64.dll
2016-04-17 00:04:50 ----A---- C:\Windows\system32\RtNicProp64.dll
2016-04-17 00:04:50 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2016-04-17 00:04:17 ----D---- C:\Windows\LastGood
2016-04-17 00:04:16 ----A---- C:\Windows\system32\drivers\TeeDriverx64.sys
2016-04-16 23:59:10 ----D---- C:\Windows\IObit
2016-04-13 13:21:14 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-04-13 13:21:14 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-04-13 13:21:14 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-04-13 13:21:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-04-13 13:21:14 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-04-13 13:21:14 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-04-13 13:21:14 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-04-13 13:21:14 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\wow64win.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\winsrv.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\smss.exe
2016-04-13 13:21:14 ----A---- C:\Windows\system32\schannel.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\rpcrt4.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\ole32.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-04-13 13:21:14 ----A---- C:\Windows\system32\ntdll.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\msv1_0.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\lsasrv.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\KernelBase.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\kernel32.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\kerberos.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-04-13 13:21:14 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-04-13 13:21:14 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-04-13 13:21:14 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-04-13 13:21:14 ----A---- C:\Windows\system32\certcli.dll
2016-04-13 13:21:14 ----A---- C:\Windows\system32\advapi32.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-13 13:21:13 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\user.exe
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-04-13 13:21:13 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\wow64cpu.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\wow64.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\wdigest.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\TSpkg.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\sspisrv.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\sspicli.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\srcore.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\srclient.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\secur32.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\rstrui.exe
2016-04-13 13:21:13 ----A---- C:\Windows\system32\rpchttp.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\ntvdm64.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\ncrypt.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\msobjs.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\msaudite.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\lsass.exe
2016-04-13 13:21:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-04-13 13:21:13 ----A---- C:\Windows\system32\drivers\appid.sys
2016-04-13 13:21:13 ----A---- C:\Windows\system32\csrsrv.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\cryptbase.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\credssp.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\conhost.exe
2016-04-13 13:21:13 ----A---- C:\Windows\system32\auditpol.exe
2016-04-13 13:21:13 ----A---- C:\Windows\system32\appidsvc.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-04-13 13:21:13 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-04-13 13:21:13 ----A---- C:\Windows\system32\appidapi.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\apisetschema.dll
2016-04-13 13:21:13 ----A---- C:\Windows\system32\adtschema.dll
2016-04-13 13:21:11 ----A---- C:\Windows\system32\mtxoci.dll
2016-04-13 13:21:10 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-04-13 13:21:10 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-04-13 13:21:08 ----A---- C:\Windows\system32\win32k.sys
2016-04-13 13:21:07 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-04-13 13:21:07 ----A---- C:\Windows\system32\samsrv.dll
2016-04-13 13:21:07 ----A---- C:\Windows\system32\samlib.dll
2016-04-13 13:21:06 ----A---- C:\Windows\system32\invagent.dll
2016-04-13 13:21:06 ----A---- C:\Windows\system32\generaltel.dll
2016-04-13 13:21:06 ----A---- C:\Windows\system32\drivers\disk.sys
2016-04-13 13:21:06 ----A---- C:\Windows\system32\devinv.dll
2016-04-13 13:21:06 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-04-13 13:21:06 ----A---- C:\Windows\system32\appraiser.dll
2016-04-13 13:21:06 ----A---- C:\Windows\system32\aepic.dll
2016-04-13 13:21:06 ----A---- C:\Windows\system32\aeinv.dll
2016-04-13 13:21:06 ----A---- C:\Windows\system32\acmigration.dll
2016-04-13 13:21:05 ----A---- C:\Windows\SYSWOW64\tbs.dll
2016-04-13 13:21:05 ----A---- C:\Windows\system32\tbs.dll
2016-04-13 13:21:05 ----A---- C:\Windows\system32\fveapibase.dll
2016-04-13 13:21:05 ----A---- C:\Windows\system32\fveapi.dll
2016-04-13 13:21:04 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-04-13 13:21:04 ----A---- C:\Windows\system32\tzres.dll
2016-04-13 13:21:04 ----A---- C:\Windows\system32\rpcss.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-04-13 13:21:02 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-04-13 13:21:02 ----A---- C:\Windows\system32\inseng.dll
2016-04-13 13:21:02 ----A---- C:\Windows\system32\iernonce.dll
2016-04-13 13:21:02 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-04-13 13:21:02 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-04-13 13:21:02 ----A---- C:\Windows\system32\ie4uinit.exe
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-04-13 13:21:01 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-04-13 13:21:01 ----A---- C:\Windows\system32\urlmon.dll
2016-04-13 13:21:01 ----A---- C:\Windows\system32\occache.dll
2016-04-13 13:21:01 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-13 13:21:01 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-04-13 13:21:01 ----A---- C:\Windows\system32\iedkcs32.dll
2016-04-13 13:21:00 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-04-13 13:21:00 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-04-13 13:21:00 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-04-13 13:21:00 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-13 13:21:00 ----A---- C:\Windows\system32\msfeeds.dll
2016-04-13 13:21:00 ----A---- C:\Windows\system32\iesetup.dll
2016-04-13 13:21:00 ----A---- C:\Windows\system32\iertutil.dll
2016-04-13 13:21:00 ----A---- C:\Windows\system32\ieapfltr.dll
2016-04-13 13:21:00 ----A---- C:\Windows\system32\dxtrans.dll
2016-04-13 13:20:59 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-04-13 13:20:59 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-04-13 13:20:59 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-04-13 13:20:59 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-04-13 13:20:59 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-04-13 13:20:59 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-04-13 13:20:59 ----A---- C:\Windows\system32\vbscript.dll
2016-04-13 13:20:59 ----A---- C:\Windows\system32\jsproxy.dll
2016-04-13 13:20:59 ----A---- C:\Windows\system32\ieui.dll
2016-04-13 13:20:59 ----A---- C:\Windows\system32\ieframe.dll
2016-04-13 13:20:59 ----A---- C:\Windows\system32\dxtmsft.dll
2016-04-13 13:20:58 ----A---- C:\Windows\system32\wininet.dll
2016-04-13 13:20:58 ----A---- C:\Windows\system32\webcheck.dll
2016-04-13 13:20:58 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-04-13 13:20:58 ----A---- C:\Windows\system32\mshtmled.dll
2016-04-13 13:20:58 ----A---- C:\Windows\system32\jscript9diag.dll
2016-04-13 13:20:58 ----A---- C:\Windows\system32\jscript9.dll
2016-04-13 13:20:58 ----A---- C:\Windows\system32\jscript.dll
2016-04-13 13:20:58 ----A---- C:\Windows\system32\ieUnatt.exe
2016-04-13 13:20:57 ----A---- C:\Windows\system32\msrating.dll
2016-04-13 13:20:57 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-04-13 13:20:57 ----A---- C:\Windows\system32\mshtml.dll
2016-04-13 13:20:42 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-04-13 13:20:42 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-04-13 13:20:42 ----A---- C:\Windows\system32\msxml3r.dll
2016-04-13 13:20:42 ----A---- C:\Windows\system32\msxml3.dll
2016-04-10 10:19:16 ----D---- C:\Program Files (x86)\Word to JPG
2016-04-05 01:02:46 ----D---- C:\Users\Administrátor\AppData\Roaming\6991
2016-04-04 23:59:55 ----D---- C:\Users\Administrátor\AppData\Roaming\MoveFab
2016-04-01 01:24:02 ----D---- C:\Program Files (x86)\HD Tune
2016-03-22 19:19:36 ----D---- C:\Users\Administrátor\AppData\Roaming\7406
======List of files/folders modified in the last 1 month======
2016-04-17 00:29:19 ----D---- C:\Program Files
2016-04-17 00:28:34 ----AD---- C:\Windows\Temp
2016-04-17 00:17:43 ----D---- C:\Windows\system32\drivers
2016-04-17 00:17:27 ----RD---- C:\Program Files (x86)
2016-04-17 00:17:27 ----HD---- C:\ProgramData
2016-04-17 00:16:24 ----SHD---- C:\Windows\Installer
2016-04-17 00:16:23 ----D---- C:\Program Files (x86)\Common Files
2016-04-17 00:16:18 ----D---- C:\Windows\SysWOW64
2016-04-17 00:16:08 ----D---- C:\Program Files (x86)\Java
2016-04-17 00:07:06 ----D---- C:\Windows\System32
2016-04-17 00:07:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-04-17 00:06:46 ----SHD---- C:\System Volume Information
2016-04-17 00:06:10 ----D---- C:\Windows\system32\catroot
2016-04-17 00:06:02 ----D---- C:\Windows\SYSWOW64\RTCOM
2016-04-17 00:06:01 ----D---- C:\Windows\inf
2016-04-17 00:05:57 ----D---- C:\Windows\system32\DriverStore
2016-04-17 00:05:57 ----D---- C:\Windows\system32\catroot2
2016-04-17 00:04:50 ----A---- C:\Windows\system32\RTNUninst64.dll
2016-04-17 00:04:17 ----D---- C:\Windows
2016-04-16 23:59:45 ----D---- C:\ProgramData\ProductData
2016-04-16 23:59:12 ----D---- C:\Windows\system32\Tasks
2016-04-16 23:59:03 ----D---- C:\Windows\system32\config
2016-04-16 23:56:30 ----D---- C:\Windows\Minidump
2016-04-16 01:44:20 ----AD---- C:\ProgramData\TEMP
2016-04-13 16:07:45 ----D---- C:\Windows\rescache
2016-04-13 14:37:21 ----D---- C:\Windows\Microsoft.NET
2016-04-13 14:35:24 ----RSD---- C:\Windows\assembly
2016-04-13 13:31:39 ----D---- C:\Windows\winsxs
2016-04-13 13:31:01 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-04-13 13:31:00 ----D---- C:\Windows\SYSWOW64\wbem
2016-04-13 13:31:00 ----D---- C:\Windows\SYSWOW64\en-US
2016-04-13 13:31:00 ----D---- C:\Windows\system32\wbem
2016-04-13 13:31:00 ----D---- C:\Windows\system32\en-US
2016-04-13 13:31:00 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-04-13 13:31:00 ----D---- C:\Windows\system32\cs-CZ
2016-04-13 13:31:00 ----D---- C:\Windows\system32\Boot
2016-04-13 13:31:00 ----D---- C:\Windows\system32\appraiser
2016-04-13 13:31:00 ----D---- C:\Windows\Logs
2016-04-13 13:31:00 ----D---- C:\Windows\AppPatch
2016-04-13 13:31:00 ----D---- C:\Program Files\Internet Explorer
2016-04-13 13:31:00 ----D---- C:\Program Files (x86)\Internet Explorer
2016-04-13 13:27:21 ----D---- C:\ProgramData\Microsoft Help
2016-04-13 13:25:19 ----D---- C:\Windows\system32\MRT
2016-04-13 13:22:58 ----A---- C:\Windows\system32\MRT.exe
2016-04-11 16:12:06 ----D---- C:\Windows\system32\NDF
2016-04-09 11:02:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-04-05 00:16:26 ----D---- C:\Users\Administrátor\AppData\Roaming\Skype
2016-04-04 23:55:29 ----D---- C:\Program Files (x86)\DVDFab 9
2016-04-03 16:15:23 ----D---- C:\ProgramData\Skype
2016-04-03 16:15:22 ----RD---- C:\Program Files (x86)\Skype
2016-04-03 10:31:09 ----D---- C:\ProgramData\Installations
2016-04-01 17:48:48 ----D---- C:\Program Files (x86)\Glary Utilities 5
2016-03-27 20:35:13 ----D---- C:\Users\Administrátor\AppData\Roaming\TeamViewer
2016-03-24 22:07:34 ----D---- C:\Windows\system32\FxsTmp
2016-03-23 15:01:16 ----D---- C:\Program Files (x86)\Rockstar Games
2016-03-23 15:01:08 ----D---- C:\Program Files\Rockstar Games
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2015-07-14 72400]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-09-17 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2015-07-14 255240]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2015-07-14 178520]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2015-07-14 53360]
R1 GUBootStartup;GUBootStartup; \??\C:\Windows\System32\drivers\GUBootStartup.sys [2015-07-08 20160]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-04-05 26528]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2015-12-18 965440]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2010-11-20 59392]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2010-11-20 360832]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2015-07-14 231520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2016-04-17 4803840]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-09-17 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-09-17 795632]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\system32\DRIVERS\LEqdUsb.Sys [2015-06-18 87696]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; C:\Windows\system32\DRIVERS\LHidEqd.Sys [2015-06-18 23184]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2015-06-18 86672]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2015-06-18 69264]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-04-17 192216]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 64896]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2016-04-17 41096]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2016-04-17 180480]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-11-05 205456]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-04-17 1027840]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2010-11-20 194944]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2010-11-20 95232]
S3 cpudrv64;cpudrv64; \??\C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-06-02 17864]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudserd.sys [2014-01-22 206080]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2014-11-05 27136]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 vpcuxd;Služba zástupné procedury virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcuxd.sys [2010-11-20 16384]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-04-30 23200]
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2015-07-08 1353720]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2016-03-10 1514464]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2016-01-23 1263040]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-01-29 327296]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-03-31 114688]
S3 msoidsvc;Microsoft Online Services Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE [2012-05-17 2079520]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-12-13 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-12-13 5132888]
S3 osubsvc;Agent odběrů systému Microsoft Office 2010; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\osa.exe [2011-11-16 493384]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-09-23 575488]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-10-02 1255736]
S3 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09 269504]
S4 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2015-09-29 2015936]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-06 144200]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-06 144200]
S4 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2015-07-02 356808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-01-21 1903472]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-16 407336]
S4 TeamViewer;TeamViewer 11; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-12-14 6889232]
-----------------EOF-----------------
Malwarebytes Anti-Malware
http://www.malwarebytes.org
Datum skenování: 17.4.2016
Čas skenování: 0:18
Protokol: d.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.04.16.05
Databáze rootkitů: v2016.04.09.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Administrátor
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 374615
Uplynulý čas: 4 min, 4 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 8
PUP.Optional.GetNow, HKLM\SOFTWARE\CLASSES\TYPELIB\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}, , [a4e19b146a2ff442b7d53ea3ab57f10f],
PUP.Optional.GetNow, HKLM\SOFTWARE\CLASSES\INTERFACE\{237FDFDB-3722-470E-8BA8-90196DABE967}, , [a4e19b146a2ff442b7d53ea3ab57f10f],
PUP.Optional.GetNow, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{237FDFDB-3722-470E-8BA8-90196DABE967}, , [a4e19b146a2ff442b7d53ea3ab57f10f],
PUP.Optional.GetNow, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{237FDFDB-3722-470E-8BA8-90196DABE967}, , [a4e19b146a2ff442b7d53ea3ab57f10f],
PUP.Optional.GetNow, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}, , [a4e19b146a2ff442b7d53ea3ab57f10f],
PUP.Optional.GetNow, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}, , [a4e19b146a2ff442b7d53ea3ab57f10f],
PUP.Optional.InstallCore, HKU\S-1-5-21-2003523395-1392909591-1769785030-1000\SOFTWARE\InstallCore, , [ee973f7019809b9b82dcb27b8a7af40c],
PUP.Optional.ProductSetup, HKU\S-1-5-21-2003523395-1392909591-1769785030-1000\SOFTWARE\PRODUCTSETUP, , [067f703fbbde39fde6d607358d77c040],
Hodnoty registru: 1
PUP.Optional.ProductSetup, HKU\S-1-5-21-2003523395-1392909591-1769785030-1000\SOFTWARE\PRODUCTSETUP|tb, 0N2X1N, , [067f703fbbde39fde6d607358d77c040]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
# AdwCleaner v5.111 - Log soubor vytvořen 17/04/2016 o 00:47:21
# Aktualizováno 14/04/2016 by Xplode
# Databáze : 2016-04-15.1 [Server]
# Operační systém : Windows 7 Ultimate Service Pack 1 (X64)
# Jméno uživatele : Administrátor - ADMIN-PC
# Spuštěno z : C:\Users\Administrátor\Downloads\adwcleaner_5.111.exe
# Volba : Skenovat
# Podpora : http://toolslib.net/forum
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
Klávesa nalezeno : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Klávesa nalezeno : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Klávesa nalezeno : HKCU\Software\Appscion
Klávesa nalezeno : HKCU\Software\InstallCore
Klávesa nalezeno : HKCU\Software\PRODUCTSETUP
Klávesa nalezeno : HKU\S-1-5-21-2003523395-1392909591-1769785030-1000\Software\Appscion
Klávesa nalezeno : HKU\S-1-5-21-2003523395-1392909591-1769785030-1000\Software\InstallCore
Klávesa nalezeno : HKU\S-1-5-21-2003523395-1392909591-1769785030-1000\Software\PRODUCTSETUP
***** [ Webové prohlížeče ] *****
*************************
C:\AdwCleaner\AdwCleaner[S1].txt - [1273 bytes] - [17/04/2016 00:47:21]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1346 bytes] ##########
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu - BSOD
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - BSOD
Zdravím!
Pro zjištění problémů s BSOD nám žádný z těchto logů nepomůže. Otevřte adresář c:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu. Toto vlákno zároveň přesouvám do správné sekce.
Pro zjištění problémů s BSOD nám žádný z těchto logů nepomůže. Otevřte adresář c:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu. Toto vlákno zároveň přesouvám do správné sekce.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - BSOD
Nepřidával jste nějaký nový hardware? V každém případě přeinstalujte ovladače graf. karty a zákl. desky (chipsetu).
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu - BSOD
Děkuji, ovladače jsem přeinstaloval, žádný nový hardware jsem nepřidával. Uvidím, zda se bude problém opakovat.
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - BSOD
OK, dejte vědět.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?