Dobrý den,
prosím o pomoc hned s 3 věcmi.
1. PC mi při nabíhání systému v polovině stavu "zamrzne" a cca 30 sec čeká na něco na pozadí. MS Essential mezi tím není aktivní, PC je nechráněn a téměř nic nejde provádět (a to ani spustit rozšířeného správce souborů). Po spuštění "něčeho" na pozadí se pak systém rozjede v pohodě.
2. Kouknu-li se do Prohlížeče událostí, najdu tam tyto hlášky:
a.) Při čekání na odezvu transakce služby IPBusEnum bylo dosaženo časového limitu (30000 ms). ID události 7011
b.) Při čekání na odezvu transakce služby AudioEndpointBuilder bylo dosaženo časového limitu (30000 ms). ID události 7011
c.) Při čekání na odezvu transakce služby TrkWks bylo dosaženo časového limitu (30000 ms). ID události 7011
d.) Služba Klient služby Sledování distribuovaných odkazů neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas. ID události 7000
e.) U služby zařazování tisku došlo k chybě sdílení tiskárny HP LaserJet 1160 s názvem sdíleného prostředku HP LaserJet 1160. Chyba 2114. Ostatní uživatelé v síti nemohou tiskárnu použít. Název protokolu - Microsoft-Windows-PrintService/Správce. ID události 315.
f.) Relaci Homegroup Log se nepodařilo spustit, protože došlo k následující chybě: 0xC0000035. Název protokolu - Microsoft-Windows-Kernel-EventTracing/Admin. ID události 2.
3. Kontrola logu:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Milos at 2014-02-16 16:55:23
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (37%) free of 114 GB
Total RAM: 16332 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:55:24, on 16.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal
Running processes:
D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe
D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
D:\Program Files (x86)\Mozilla Firefox\firefox.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Milos.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\bin\jp2ssv.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Tilt] C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
O4 - HKLM\..\Run: [Nástroj WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [ghost] C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [GrooveMonitor] D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Vyplnit formulář - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Vyplnit formulář - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Uložit - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Uložit formuláře - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Přizpůsobit - {320AF880-6646-11D3-ABEE-C5DBF3571F4E} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Přizpůsobit Menu - {320AF880-6646-11D3-ABEE-C5DBF3571F4E} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Show Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF Nástrojová lišta - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13946 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
C:\Windows\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
"D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
HydraDM64.exe -h:131202 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe"
"C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe"
"C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
taskeng.exe {207E43F8-DDF4-4877-AA66-5E6C92CF5186}
"D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"D:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
{D5D7539E-B4A3-4BA5-B2C6-D41FAB03319E}
{4AFDB6D0-2DED-453D-888E-2966EF232D8A}
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
"E:\TeamSpeak 3 Client\ts3client_win64.exe"
"C:\Windows\system32\mmc.exe" "C:\Windows\system32\compmgmt.msc" /s
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"D:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "http://forum.viry.cz/viewtopic.php?f=5&t=130610"
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=2320.284e4900.896760870 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 2320 "\\.\pipe\gecko-crash-server-pipe.2320" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --proxy-stub-channel=Flash7772.52A3C768.634 --host-broker-channel=Flash7772.52A3C768.4813 --host-pid=7772 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --channel=1916.0044F40C.959434425 --proxy-stub-channel=Flash7772.52A3C768.634 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" --host-npapi-version=27 --type=renderer
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=2320.26589600.1660995480 "C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 2320 "\\.\pipe\gecko-crash-server-pipe.2320" plugin
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"E:\Install\RSIT\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2013-09-15 18534104]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - D:\Program Files (x86)\Java\bin\ssv.dll [2013-12-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files (x86)\Java\bin\jp2ssv.dll [2013-12-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2013-09-15 18534104]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2424-07-27 7205592]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064]
"GrooveMonitor"=D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE [2013-03-06 945856]
""= []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-11-22 389120]
"DAEMON Tools Lite"=D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2014-01-08 55360]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-08-10 291648]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-11-29 284440]
"Adobe Reader Speed Launcher"=D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2013-12-18 40312]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
""= []
"Tilt"=C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [2011-04-20 729088]
"Nástroj WD Drive Unlocker"=C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [2012-06-13 1688008]
"(default)"= []
"WD Quick View"=C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [2013-08-14 5537136]
"ghost"=C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe [2010-02-08 192000]
"PMBVolumeWatcher"=D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-04-24 740888]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-01-31 767200]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2459-05-11 00:51:37 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2440-08-16 15:07:26 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\RtkApi64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RtkAPO64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RTCOM64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\WavesGUILib64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtPgEx64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtDataProc64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RCoInstII64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-02-16 16:55:23 ----D---- C:\rsit
2014-02-16 16:55:23 ----D---- C:\Program Files\trend micro
2014-02-16 16:01:53 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-02-16 16:01:53 ----A---- C:\Windows\system32\mstscax.dll
2014-02-16 15:33:10 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprt.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-02-16 15:33:08 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-02-16 15:33:08 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-02-16 15:31:14 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-02-16 15:31:14 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-02-13 07:55:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-02-13 07:55:47 ----A---- C:\Windows\system32\vbscript.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\iernonce.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ie4uinit.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\mshtml.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\system32\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\ieapfltr.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-02-13 07:55:27 ----A---- C:\Windows\system32\ieframe.dll
2014-02-13 07:55:26 ----A---- C:\Windows\system32\jscript9.dll
2014-02-13 07:11:49 ----A---- C:\Windows\system32\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\system32\msxml3r.dll
2014-02-13 07:11:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\msdrm.dll
2014-02-13 07:11:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d2d1.dll
2014-02-13 07:11:42 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-02-03 19:01:50 ----D---- C:\Windows\Migration
2014-02-02 18:21:21 ----D---- C:\ProgramData\ATI
2014-02-02 18:21:21 ----D---- C:\Program Files (x86)\AMD AVT
2014-02-02 17:56:24 ----A---- C:\Windows\SYSWOW64\log.txt
2014-01-31 22:07:46 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2014-01-31 22:07:46 ----A---- C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\atimpc64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07:28 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2014-01-31 22:07:26 ----A---- C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07:10 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2014-01-31 22:06:38 ----A---- C:\Windows\system32\atiumd6a.dll
2014-01-31 22:06:34 ----A---- C:\Windows\system32\atiumd64.dll
2014-01-31 21:57:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-01-31 21:46:47 ----SHD---- C:\RECYCLER
2014-01-31 21:43:36 ----A---- C:\Windows\system32\clinfo.exe
2014-01-31 21:43:20 ----A---- C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43:14 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2014-01-31 21:43:08 ----A---- C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43:04 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2014-01-31 21:42:58 ----A---- C:\Windows\system32\amdocl64.dll
2014-01-31 21:40:34 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2014-01-31 21:38:16 ----A---- C:\Windows\system32\OpenCL.dll
2014-01-31 21:38:12 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-01-31 21:26:40 ----A---- C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26:30 ----A---- C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26:28 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2014-01-31 21:26:20 ----A---- C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26:18 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2014-01-31 21:26:04 ----A---- C:\Windows\system32\aticaldd64.dll
2014-01-31 21:24:36 ----A---- C:\Windows\system32\mantle64.dll
2014-01-31 21:24:16 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2014-01-31 21:23:54 ----A---- C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22:52 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2014-01-31 21:22:04 ----A---- C:\Windows\system32\atio6axx.dll
2014-01-31 21:10:46 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2014-01-31 21:06:22 ----A---- C:\Windows\system32\atidemgy.dll
2014-01-31 21:06:12 ----A---- C:\Windows\system32\atimuixx.dll
2014-01-31 21:06:06 ----A---- C:\Windows\system32\atieclxx.exe
2014-01-31 21:05:12 ----A---- C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03:34 ----A---- C:\Windows\system32\atitmm64.dll
2014-01-31 21:03:32 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2014-01-31 20:59:12 ----A---- C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59:02 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2014-01-31 20:48:04 ----A---- C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47:58 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2014-01-31 20:37:06 ----A---- C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:30:14 ----A---- C:\Windows\system32\atiadlxx.dll
2014-01-31 20:30:02 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2014-01-31 20:29:46 ----A---- C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29:42 ----A---- C:\$tmplistf.txt
2014-01-31 20:29:42 ----A---- C:\$tmplistd.txt
2014-01-31 20:29:40 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2014-01-31 20:29:40 ----A---- C:\Windows\system32\atiglpxx.dll
2014-01-31 20:29:36 ----A---- C:\Windows\system32\atig6txx.dll
2014-01-31 20:29:20 ----A---- C:\Windows\TempFileCleaner.cmd
2014-01-31 20:29:14 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2014-01-31 20:28:50 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-01-31 20:26:26 ----D---- C:\MyBootCD
2014-01-31 20:25:02 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-01-31 20:23:44 ----A---- C:\Windows\system32\amdave64.dll
2014-01-31 20:23:38 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2014-01-31 20:23:34 ----D---- C:\ProgramData\Astroburn Lite
2014-01-31 20:23:26 ----A---- C:\Windows\system32\atisamu64.dll
2014-01-31 20:23:20 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2014-01-31 20:19:25 ----D---- C:\Users\Milos\AppData\Roaming\WinZip
2014-01-31 15:53:46 ----A---- C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49:02 ----A---- C:\Windows\SYSWOW64\kdbsdk32.dll
2014-01-27 20:44:08 ----D---- C:\Users\Milos\AppData\Roaming\ParetoLogic
2014-01-27 20:44:08 ----D---- C:\Users\Milos\AppData\Roaming\DriverCure
2014-01-27 20:43:54 ----D---- C:\ProgramData\ParetoLogic
2014-01-26 16:52:29 ----A---- C:\Windows\SYSWOW64\MSMPIDE.DLL
2014-01-26 16:52:29 ----A---- C:\Windows\system32\pdfcmnnt.dll
2014-01-26 16:40:42 ----D---- C:\ProgramData\WinZip
2014-01-26 16:40:41 ----D---- C:\Program Files\WinZip
2014-01-24 08:43:10 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\java.exe
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-24 08:36:54 ----A---- C:\Windows\system32\win32k.sys
2014-01-24 08:36:53 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-24 07:19:36 ----D---- C:\Users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:42:32 ----D---- C:\Users\Milos\AppData\Roaming\PDF Architect
2014-01-22 21:40:02 ----D---- C:\Users\Milos\AppData\Roaming\pdfforge
======List of files/folders modified in the last 1 months======
2014-02-16 16:55:23 ----RD---- C:\Program Files
2014-02-16 16:46:41 ----D---- C:\Windows\Temp
2014-02-16 16:34:32 ----D---- C:\Users\Milos\AppData\Roaming\Winamp
2014-02-16 16:21:30 ----D---- C:\Windows\system32\config
2014-02-16 16:14:19 ----D---- C:\Windows\System32
2014-02-16 16:14:19 ----D---- C:\Windows\inf
2014-02-16 16:14:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-16 16:09:06 ----D---- C:\Users\Milos\AppData\Roaming\Raptr
2014-02-16 16:08:34 ----D---- C:\Windows\SysWOW64
2014-02-16 16:08:34 ----D---- C:\Users\Milos\AppData\Roaming\Dropbox
2014-02-16 16:04:05 ----D---- C:\Windows
2014-02-16 16:03:24 ----SHD---- C:\System Volume Information
2014-02-16 16:01:43 ----D---- C:\Windows\winsxs
2014-02-16 16:01:43 ----D---- C:\Windows\system32\catroot
2014-02-16 15:48:33 ----SHD---- C:\Config.Msi
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-02-16 15:48:03 ----D---- C:\Windows\system32\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\system32\DriverStore
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers\en-US
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers
2014-02-16 15:48:03 ----D---- C:\Windows\system32\cs-CZ
2014-02-16 15:37:38 ----D---- C:\Windows\system32\Tasks
2014-02-16 15:37:24 ----D---- C:\Windows\Tasks
2014-02-16 15:33:19 ----D---- C:\Windows\system32\MRT
2014-02-16 15:33:19 ----D---- C:\Windows\debug
2014-02-16 15:33:18 ----A---- C:\Windows\system32\MRT.exe
2014-02-16 15:33:12 ----D---- C:\Windows\system32\catroot2
2014-02-16 15:33:07 ----SHD---- C:\Windows\Installer
2014-02-16 15:33:05 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-15 23:40:47 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-02-15 22:12:34 ----D---- C:\ProgramData\Origin
2014-02-13 21:16:33 ----D---- C:\Windows\Microsoft.NET
2014-02-13 21:12:19 ----RSD---- C:\Windows\assembly
2014-02-13 20:13:28 ----D---- C:\Program Files\Internet Explorer
2014-02-13 20:13:28 ----D---- C:\Program Files (x86)\Internet Explorer
2014-02-13 07:58:58 ----D---- C:\ProgramData\Microsoft Help
2014-02-13 07:56:02 ----A---- C:\Windows\win.ini
2014-02-11 21:46:06 ----D---- C:\Windows\Prefetch
2014-02-05 21:23:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-03 20:52:39 ----D---- C:\Program Files\Microsoft Security Client
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)
2014-02-03 20:27:37 ----D---- C:\Users\Milos\AppData\Roaming\GlarySoft
2014-02-03 19:01:50 ----SD---- C:\ProgramData\Microsoft
2014-02-03 08:07:28 ----D---- C:\Windows\SoftwareDistribution
2014-02-03 08:07:28 ----D---- C:\Users\Milos\AppData\Roaming\DAEMON Tools Lite
2014-02-02 18:21:47 ----D---- C:\Program Files (x86)\Raptr
2014-02-02 18:21:21 ----HD---- C:\ProgramData
2014-02-02 18:21:21 ----D---- C:\ProgramData\AMD
2014-02-02 18:21:12 ----D---- C:\Program Files\ATI Technologies
2014-02-02 18:17:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-02-02 18:17:30 ----D---- C:\Windows\system32\en-US
2014-02-02 18:14:36 ----D---- C:\AMD
2014-01-31 22:07:28 ----A---- C:\Windows\system32\atiuxp64.dll
2014-01-31 22:07:24 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2014-01-31 22:07:22 ----A---- C:\Windows\system32\aticfx64.dll
2014-01-31 22:07:20 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2014-01-31 22:07:14 ----A---- C:\Windows\system32\atidxx64.dll
2014-01-31 22:07:02 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2014-01-31 22:06:54 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2014-01-31 21:01:52 ----D---- C:\Temp
2014-01-30 19:32:30 ----D---- C:\Windows\rescache
2014-01-29 08:17:39 ----D---- C:\Windows\system32\wfp
2014-01-29 08:17:06 ----D---- C:\Windows\registration
2014-01-28 08:03:20 ----D---- C:\Windows\system32\CodeIntegrity
2014-01-28 08:02:45 ----SD---- C:\Users\Milos\AppData\Roaming\Microsoft
2014-01-26 20:53:28 ----D---- C:\Windows\PolicyDefinitions
2014-01-26 17:33:12 ----RSD---- C:\Windows\Fonts
2014-01-24 08:55:14 ----D---- C:\ProgramData\Oracle
2014-01-24 08:29:11 ----D---- C:\Windows\SYSWOW64\drivers
2014-01-24 08:29:11 ----D---- C:\Windows\system32\NDF
2014-01-24 08:29:11 ----D---- C:\Windows\pss
2014-01-24 08:29:11 ----D---- C:\Windows\AppCompat
2014-01-24 08:29:11 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-01-24 08:27:43 ----RHD---- C:\MSOCache
2014-01-24 08:27:43 ----D---- C:\Program Files (x86)\Common Files
2014-01-18 17:28:32 ----D---- C:\Users\Milos\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-29 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-08-10 19264]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-07 283064]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944]
R2 RtNdPt60;Realtek NDIS Protocol Driver; C:\Windows\system32\DRIVERS\RtNdPt60.sys [2011-06-15 32544]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-01-31 13929472]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-01-31 636928]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-19 94720]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2012-08-03 26136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2423-07-09 3760344]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-08-10 357184]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-08-10 789824]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-01-14 99800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-01-14 888536]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 26440]
R4 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2012-10-26 23680]
S3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver); C:\Windows\system32\DRIVERS\ASUSstpt.sys [2011-09-15 24648]
S3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM); C:\Windows\system32\DRIVERS\ASUSumsc.sys [2011-09-15 141896]
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cpuz130;cpuz130; \??\D:\Temp\cpuz130\cpuz_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-06-04 103448]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-12-23 21712]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVlan620.sys [2011-09-16 32360]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-06-04 203672]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVLAN620.sys [2011-09-16 32360]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-01-31 240128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-06-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-02-02 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-02-17 149120]
R2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [2012-10-12 2005504]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2013-04-24 483864]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-12-05 76888]
R2 TeamViewer9;TeamViewer 9; D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WDBackup;WD Backup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2013-11-02 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2013-11-02 270704]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-05-27 160768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-02-06 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-17 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-12-20 541760]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-29 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
a nakonec ještě jeden dotaz:
Je normální mít spuštěné 2x
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
???
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o pomoc s opožděným startem W7-64b a kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Zdravím!
Spusťte mejprve tuto utilitu:
Spusťte mejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
# AdwCleaner v3.018 - Report created 16/02/2014 at 18:07:00
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Milos - MILOS-PC
# Running from : D:\Users\Milos\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\Users\Milos\AppData\Local\eSupport.com
Folder Deleted : C:\Users\Milos\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\Milos\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\Milos\AppData\Roaming\pdfforge
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKLM\Software\PIP
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16518
-\\ Mozilla Firefox v25.0.1 (cs)
[ File : C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\s1amq8tc.default-1354039466817\prefs.js ]
[ File : C:\Users\Ivanka\AppData\Roaming\Mozilla\Firefox\Profiles\j8qnks6y.default\prefs.js ]
-\\ Google Chrome v32.0.1700.107
[ File : C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\preferences ]
[ File : C:\Users\Ivanka\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R2].txt - [1735 octets] - [16/02/2014 17:50:48]
AdwCleaner[R3].txt - [1795 octets] - [16/02/2014 18:02:32]
AdwCleaner[S1].txt - [1697 octets] - [16/02/2014 18:07:00]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1757 octets] ##########
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Milos - MILOS-PC
# Running from : D:\Users\Milos\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\Users\Milos\AppData\Local\eSupport.com
Folder Deleted : C:\Users\Milos\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\Milos\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\Milos\AppData\Roaming\pdfforge
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKLM\Software\PIP
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16518
-\\ Mozilla Firefox v25.0.1 (cs)
[ File : C:\Users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\s1amq8tc.default-1354039466817\prefs.js ]
[ File : C:\Users\Ivanka\AppData\Roaming\Mozilla\Firefox\Profiles\j8qnks6y.default\prefs.js ]
-\\ Google Chrome v32.0.1700.107
[ File : C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\preferences ]
[ File : C:\Users\Ivanka\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R2].txt - [1735 octets] - [16/02/2014 17:50:48]
AdwCleaner[R3].txt - [1795 octets] - [16/02/2014 18:02:32]
AdwCleaner[S1].txt - [1697 octets] - [16/02/2014 18:07:00]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1757 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Logfile of random's system information tool 1.08 (written by random/random)
Run by Milos at 2014-02-16 22:12:35
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (38%) free of 114 GB
Total RAM: 16332 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:12:37, on 16.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal
Running processes:
D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe
D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
D:\Program Files (x86)\Mozilla Firefox\firefox.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
D:\Program Files (x86)\ASUS\AI Suite II\AsAPHider\AsAPHider.exe
E:\Hry\Origin\Origin.exe
C:\Program Files\trend micro\Milos.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\bin\jp2ssv.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Tilt] C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
O4 - HKLM\..\Run: [Nástroj WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [ghost] C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [GrooveMonitor] D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Vyplnit formulář - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Vyplnit formulář - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Uložit - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Uložit formuláře - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Přizpůsobit - {320AF880-6646-11D3-ABEE-C5DBF3571F4E} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Přizpůsobit Menu - {320AF880-6646-11D3-ABEE-C5DBF3571F4E} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Show Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF Nástrojová lišta - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13960 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
"D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:131170 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe"
"C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe"
"C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"D:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3756.27ce5a00.1930389518 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 3756 "\\.\pipe\gecko-crash-server-pipe.3756" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --proxy-stub-channel=Flash3264.6748C768.29165 --host-broker-channel=Flash3264.6748C768.23205 --host-pid=3264 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --channel=3924.0030F890.690435883 --proxy-stub-channel=Flash3264.6748C768.29165 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" --host-npapi-version=27 --type=renderer
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3756.13caf300.1931469004 "C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 3756 "\\.\pipe\gecko-crash-server-pipe.3756" plugin
taskeng.exe {FAF2A937-76C6-4C5F-AD22-D80A89F15864}
"D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\AsAPHider\AsAPHider.exe" -start 0
"E:\Hry\Origin\Origin.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"E:\TeamSpeak 3 Client\ts3client_win64.exe"
taskhost.exe $(Arg0)
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe34_ Global\UsGthrCtrlFltPipeMssGthrPipe34 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
C:\Windows\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"E:\Install\RSIT\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2013-09-15 18534104]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - D:\Program Files (x86)\Java\bin\ssv.dll [2013-12-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files (x86)\Java\bin\jp2ssv.dll [2013-12-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2013-09-15 18534104]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2424-07-27 7205592]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064]
"GrooveMonitor"=D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE [2013-03-06 945856]
""= []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-11-22 389120]
"DAEMON Tools Lite"=D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2014-01-08 55360]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-08-10 291648]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-11-29 284440]
"Adobe Reader Speed Launcher"=D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2013-12-18 40312]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
""= []
"Tilt"=C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [2011-04-20 729088]
"Nástroj WD Drive Unlocker"=C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [2012-06-13 1688008]
"(default)"= []
"WD Quick View"=C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [2013-08-14 5537136]
"ghost"=C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe [2010-02-08 192000]
"PMBVolumeWatcher"=D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-04-24 740888]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-01-31 767200]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2459-05-11 00:51:37 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2440-08-16 15:07:26 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\RtkApi64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RtkAPO64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RTCOM64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\WavesGUILib64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtPgEx64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtDataProc64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RCoInstII64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-02-16 17:50:40 ----D---- C:\AdwCleaner
2014-02-16 16:55:23 ----D---- C:\rsit
2014-02-16 16:55:23 ----D---- C:\Program Files\trend micro
2014-02-16 16:01:53 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-02-16 16:01:53 ----A---- C:\Windows\system32\mstscax.dll
2014-02-16 15:33:10 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprt.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-02-16 15:33:08 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-02-16 15:33:08 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-02-16 15:31:14 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-02-16 15:31:14 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-02-13 07:55:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-02-13 07:55:47 ----A---- C:\Windows\system32\vbscript.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\iernonce.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ie4uinit.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\mshtml.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\system32\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\ieapfltr.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-02-13 07:55:27 ----A---- C:\Windows\system32\ieframe.dll
2014-02-13 07:55:26 ----A---- C:\Windows\system32\jscript9.dll
2014-02-13 07:11:49 ----A---- C:\Windows\system32\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\system32\msxml3r.dll
2014-02-13 07:11:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\msdrm.dll
2014-02-13 07:11:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d2d1.dll
2014-02-13 07:11:42 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-02-03 19:01:50 ----D---- C:\Windows\Migration
2014-02-02 18:21:21 ----D---- C:\ProgramData\ATI
2014-02-02 18:21:21 ----D---- C:\Program Files (x86)\AMD AVT
2014-02-02 17:56:24 ----A---- C:\Windows\SYSWOW64\log.txt
2014-01-31 22:07:46 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2014-01-31 22:07:46 ----A---- C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\atimpc64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07:28 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2014-01-31 22:07:26 ----A---- C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07:10 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2014-01-31 22:06:38 ----A---- C:\Windows\system32\atiumd6a.dll
2014-01-31 22:06:34 ----A---- C:\Windows\system32\atiumd64.dll
2014-01-31 21:57:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-01-31 21:46:47 ----SHD---- C:\RECYCLER
2014-01-31 21:43:36 ----A---- C:\Windows\system32\clinfo.exe
2014-01-31 21:43:20 ----A---- C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43:14 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2014-01-31 21:43:08 ----A---- C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43:04 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2014-01-31 21:42:58 ----A---- C:\Windows\system32\amdocl64.dll
2014-01-31 21:40:34 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2014-01-31 21:38:16 ----A---- C:\Windows\system32\OpenCL.dll
2014-01-31 21:38:12 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-01-31 21:26:40 ----A---- C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26:30 ----A---- C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26:28 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2014-01-31 21:26:20 ----A---- C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26:18 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2014-01-31 21:26:04 ----A---- C:\Windows\system32\aticaldd64.dll
2014-01-31 21:24:36 ----A---- C:\Windows\system32\mantle64.dll
2014-01-31 21:24:16 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2014-01-31 21:23:54 ----A---- C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22:52 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2014-01-31 21:22:04 ----A---- C:\Windows\system32\atio6axx.dll
2014-01-31 21:10:46 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2014-01-31 21:06:22 ----A---- C:\Windows\system32\atidemgy.dll
2014-01-31 21:06:12 ----A---- C:\Windows\system32\atimuixx.dll
2014-01-31 21:06:06 ----A---- C:\Windows\system32\atieclxx.exe
2014-01-31 21:05:12 ----A---- C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03:34 ----A---- C:\Windows\system32\atitmm64.dll
2014-01-31 21:03:32 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2014-01-31 20:59:12 ----A---- C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59:02 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2014-01-31 20:48:04 ----A---- C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47:58 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2014-01-31 20:37:06 ----A---- C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:30:14 ----A---- C:\Windows\system32\atiadlxx.dll
2014-01-31 20:30:02 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2014-01-31 20:29:46 ----A---- C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29:42 ----A---- C:\$tmplistf.txt
2014-01-31 20:29:42 ----A---- C:\$tmplistd.txt
2014-01-31 20:29:40 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2014-01-31 20:29:40 ----A---- C:\Windows\system32\atiglpxx.dll
2014-01-31 20:29:36 ----A---- C:\Windows\system32\atig6txx.dll
2014-01-31 20:29:20 ----A---- C:\Windows\TempFileCleaner.cmd
2014-01-31 20:29:14 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2014-01-31 20:28:50 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-01-31 20:26:26 ----D---- C:\MyBootCD
2014-01-31 20:25:02 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-01-31 20:23:44 ----A---- C:\Windows\system32\amdave64.dll
2014-01-31 20:23:38 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2014-01-31 20:23:34 ----D---- C:\ProgramData\Astroburn Lite
2014-01-31 20:23:26 ----A---- C:\Windows\system32\atisamu64.dll
2014-01-31 20:23:20 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2014-01-31 20:19:25 ----D---- C:\Users\Milos\AppData\Roaming\WinZip
2014-01-31 15:53:46 ----A---- C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49:02 ----A---- C:\Windows\SYSWOW64\kdbsdk32.dll
2014-01-26 16:52:29 ----A---- C:\Windows\SYSWOW64\MSMPIDE.DLL
2014-01-26 16:52:29 ----A---- C:\Windows\system32\pdfcmnnt.dll
2014-01-26 16:40:42 ----D---- C:\ProgramData\WinZip
2014-01-26 16:40:41 ----D---- C:\Program Files\WinZip
2014-01-24 08:43:10 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\java.exe
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-24 08:36:54 ----A---- C:\Windows\system32\win32k.sys
2014-01-24 08:36:53 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-24 07:19:36 ----D---- C:\Users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:42:32 ----D---- C:\Users\Milos\AppData\Roaming\PDF Architect
======List of files/folders modified in the last 1 months======
2014-02-16 22:11:53 ----D---- C:\Windows\Temp
2014-02-16 18:15:22 ----D---- C:\Windows\SysWOW64
2014-02-16 18:15:21 ----D---- C:\Windows\System32
2014-02-16 18:15:21 ----D---- C:\Windows\inf
2014-02-16 18:15:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-16 18:15:15 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-02-16 18:11:13 ----D---- C:\ProgramData\Origin
2014-02-16 18:09:57 ----D---- C:\Users\Milos\AppData\Roaming\Raptr
2014-02-16 18:09:37 ----D---- C:\Users\Milos\AppData\Roaming\Dropbox
2014-02-16 18:07:22 ----D---- C:\Windows\system32\config
2014-02-16 18:07:00 ----HD---- C:\ProgramData
2014-02-16 17:57:06 ----D---- C:\Windows\Microsoft.NET
2014-02-16 16:55:23 ----RD---- C:\Program Files
2014-02-16 16:34:32 ----D---- C:\Users\Milos\AppData\Roaming\Winamp
2014-02-16 16:04:05 ----D---- C:\Windows
2014-02-16 16:03:24 ----SHD---- C:\System Volume Information
2014-02-16 16:01:43 ----D---- C:\Windows\winsxs
2014-02-16 16:01:43 ----D---- C:\Windows\system32\catroot
2014-02-16 15:48:33 ----SHD---- C:\Config.Msi
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-02-16 15:48:03 ----D---- C:\Windows\system32\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\system32\DriverStore
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers\en-US
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers
2014-02-16 15:48:03 ----D---- C:\Windows\system32\cs-CZ
2014-02-16 15:37:38 ----D---- C:\Windows\system32\Tasks
2014-02-16 15:37:24 ----D---- C:\Windows\Tasks
2014-02-16 15:35:28 ----D---- C:\Windows\system32\MRT
2014-02-16 15:33:19 ----D---- C:\Windows\debug
2014-02-16 15:33:18 ----A---- C:\Windows\system32\MRT.exe
2014-02-16 15:33:12 ----D---- C:\Windows\system32\catroot2
2014-02-16 15:33:07 ----SHD---- C:\Windows\Installer
2014-02-16 15:33:05 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-13 21:12:19 ----RSD---- C:\Windows\assembly
2014-02-13 20:13:28 ----D---- C:\Program Files\Internet Explorer
2014-02-13 20:13:28 ----D---- C:\Program Files (x86)\Internet Explorer
2014-02-13 07:58:58 ----D---- C:\ProgramData\Microsoft Help
2014-02-13 07:56:02 ----A---- C:\Windows\win.ini
2014-02-11 21:46:06 ----D---- C:\Windows\Prefetch
2014-02-05 21:23:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-03 20:52:39 ----D---- C:\Program Files\Microsoft Security Client
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)
2014-02-03 20:27:37 ----D---- C:\Users\Milos\AppData\Roaming\GlarySoft
2014-02-03 19:01:50 ----SD---- C:\ProgramData\Microsoft
2014-02-03 08:07:28 ----D---- C:\Windows\SoftwareDistribution
2014-02-03 08:07:28 ----D---- C:\Users\Milos\AppData\Roaming\DAEMON Tools Lite
2014-02-02 18:21:47 ----D---- C:\Program Files (x86)\Raptr
2014-02-02 18:21:21 ----D---- C:\ProgramData\AMD
2014-02-02 18:21:12 ----D---- C:\Program Files\ATI Technologies
2014-02-02 18:17:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-02-02 18:17:30 ----D---- C:\Windows\system32\en-US
2014-02-02 18:14:36 ----D---- C:\AMD
2014-01-31 22:07:28 ----A---- C:\Windows\system32\atiuxp64.dll
2014-01-31 22:07:24 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2014-01-31 22:07:22 ----A---- C:\Windows\system32\aticfx64.dll
2014-01-31 22:07:20 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2014-01-31 22:07:14 ----A---- C:\Windows\system32\atidxx64.dll
2014-01-31 22:07:02 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2014-01-31 22:06:54 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2014-01-31 21:01:52 ----D---- C:\Temp
2014-01-30 19:32:30 ----D---- C:\Windows\rescache
2014-01-29 08:17:39 ----D---- C:\Windows\system32\wfp
2014-01-29 08:17:06 ----D---- C:\Windows\registration
2014-01-28 08:03:20 ----D---- C:\Windows\system32\CodeIntegrity
2014-01-28 08:02:45 ----SD---- C:\Users\Milos\AppData\Roaming\Microsoft
2014-01-26 20:53:28 ----D---- C:\Windows\PolicyDefinitions
2014-01-26 17:33:12 ----RSD---- C:\Windows\Fonts
2014-01-24 08:55:14 ----D---- C:\ProgramData\Oracle
2014-01-24 08:29:11 ----D---- C:\Windows\SYSWOW64\drivers
2014-01-24 08:29:11 ----D---- C:\Windows\system32\NDF
2014-01-24 08:29:11 ----D---- C:\Windows\pss
2014-01-24 08:29:11 ----D---- C:\Windows\AppCompat
2014-01-24 08:29:11 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-01-24 08:27:43 ----RHD---- C:\MSOCache
2014-01-24 08:27:43 ----D---- C:\Program Files (x86)\Common Files
2014-01-18 17:28:32 ----D---- C:\Users\Milos\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-29 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-08-10 19264]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-07 283064]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944]
R2 RtNdPt60;Realtek NDIS Protocol Driver; C:\Windows\system32\DRIVERS\RtNdPt60.sys [2011-06-15 32544]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-01-31 13929472]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-01-31 636928]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-19 94720]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2012-08-03 26136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2423-07-09 3760344]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-08-10 357184]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-08-10 789824]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-01-14 99800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-01-14 888536]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 26440]
R4 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2012-10-26 23680]
S3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver); C:\Windows\system32\DRIVERS\ASUSstpt.sys [2011-09-15 24648]
S3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM); C:\Windows\system32\DRIVERS\ASUSumsc.sys [2011-09-15 141896]
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cpuz130;cpuz130; \??\D:\Temp\cpuz130\cpuz_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-06-04 103448]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-12-23 21712]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVlan620.sys [2011-09-16 32360]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-06-04 203672]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVLAN620.sys [2011-09-16 32360]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-01-31 240128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-06-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-02-02 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-02-17 149120]
R2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [2012-10-12 2005504]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2013-04-24 483864]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-12-05 76888]
R2 TeamViewer9;TeamViewer 9; D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WDBackup;WD Backup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2013-11-02 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2013-11-02 270704]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-05-27 160768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-02-06 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-17 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-12-20 541760]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-29 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Run by Milos at 2014-02-16 22:12:35
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (38%) free of 114 GB
Total RAM: 16332 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:12:37, on 16.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal
Running processes:
D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe
D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
D:\Program Files (x86)\Mozilla Firefox\firefox.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
D:\Program Files (x86)\ASUS\AI Suite II\AsAPHider\AsAPHider.exe
E:\Hry\Origin\Origin.exe
C:\Program Files\trend micro\Milos.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\bin\jp2ssv.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Tilt] C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
O4 - HKLM\..\Run: [Nástroj WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [ghost] C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [GrooveMonitor] D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Vyplnit formulář - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Vyplnit formulář - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Uložit - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Uložit formuláře - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Přizpůsobit - {320AF880-6646-11D3-ABEE-C5DBF3571F4E} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Přizpůsobit Menu - {320AF880-6646-11D3-ABEE-C5DBF3571F4E} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Show Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: RF Nástrojová lišta - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13960 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
"D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:131170 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe"
"C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe"
"C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"D:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3756.27ce5a00.1930389518 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 3756 "\\.\pipe\gecko-crash-server-pipe.3756" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --proxy-stub-channel=Flash3264.6748C768.29165 --host-broker-channel=Flash3264.6748C768.23205 --host-pid=3264 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --channel=3924.0030F890.690435883 --proxy-stub-channel=Flash3264.6748C768.29165 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" --host-npapi-version=27 --type=renderer
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3756.13caf300.1931469004 "C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 3756 "\\.\pipe\gecko-crash-server-pipe.3756" plugin
taskeng.exe {FAF2A937-76C6-4C5F-AD22-D80A89F15864}
"D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\AsAPHider\AsAPHider.exe" -start 0
"E:\Hry\Origin\Origin.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"E:\TeamSpeak 3 Client\ts3client_win64.exe"
taskhost.exe $(Arg0)
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe34_ Global\UsGthrCtrlFltPipeMssGthrPipe34 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
C:\Windows\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"E:\Install\RSIT\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2013-09-15 18534104]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - D:\Program Files (x86)\Java\bin\ssv.dll [2013-12-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files (x86)\Java\bin\jp2ssv.dll [2013-12-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2013-09-15 18534104]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2424-07-27 7205592]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064]
"GrooveMonitor"=D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE [2013-03-06 945856]
""= []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-11-22 389120]
"DAEMON Tools Lite"=D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2014-01-08 55360]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-08-10 291648]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-11-29 284440]
"Adobe Reader Speed Launcher"=D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2013-12-18 40312]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
""= []
"Tilt"=C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [2011-04-20 729088]
"Nástroj WD Drive Unlocker"=C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [2012-06-13 1688008]
"(default)"= []
"WD Quick View"=C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [2013-08-14 5537136]
"ghost"=C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe [2010-02-08 192000]
"PMBVolumeWatcher"=D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-04-24 740888]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-01-31 767200]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2459-05-11 00:51:37 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2440-08-16 15:07:26 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\RtkApi64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RtkAPO64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RTCOM64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\WavesGUILib64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtPgEx64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtDataProc64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RCoInstII64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-02-16 17:50:40 ----D---- C:\AdwCleaner
2014-02-16 16:55:23 ----D---- C:\rsit
2014-02-16 16:55:23 ----D---- C:\Program Files\trend micro
2014-02-16 16:01:53 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-02-16 16:01:53 ----A---- C:\Windows\system32\mstscax.dll
2014-02-16 15:33:10 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprt.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-02-16 15:33:08 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-02-16 15:33:08 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-02-16 15:31:14 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-02-16 15:31:14 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-02-13 07:55:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-02-13 07:55:47 ----A---- C:\Windows\system32\vbscript.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\iernonce.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ie4uinit.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\mshtml.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\system32\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\ieapfltr.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-02-13 07:55:27 ----A---- C:\Windows\system32\ieframe.dll
2014-02-13 07:55:26 ----A---- C:\Windows\system32\jscript9.dll
2014-02-13 07:11:49 ----A---- C:\Windows\system32\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\system32\msxml3r.dll
2014-02-13 07:11:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\msdrm.dll
2014-02-13 07:11:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d2d1.dll
2014-02-13 07:11:42 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-02-03 19:01:50 ----D---- C:\Windows\Migration
2014-02-02 18:21:21 ----D---- C:\ProgramData\ATI
2014-02-02 18:21:21 ----D---- C:\Program Files (x86)\AMD AVT
2014-02-02 17:56:24 ----A---- C:\Windows\SYSWOW64\log.txt
2014-01-31 22:07:46 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2014-01-31 22:07:46 ----A---- C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\atimpc64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07:28 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2014-01-31 22:07:26 ----A---- C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07:10 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2014-01-31 22:06:38 ----A---- C:\Windows\system32\atiumd6a.dll
2014-01-31 22:06:34 ----A---- C:\Windows\system32\atiumd64.dll
2014-01-31 21:57:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-01-31 21:46:47 ----SHD---- C:\RECYCLER
2014-01-31 21:43:36 ----A---- C:\Windows\system32\clinfo.exe
2014-01-31 21:43:20 ----A---- C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43:14 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2014-01-31 21:43:08 ----A---- C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43:04 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2014-01-31 21:42:58 ----A---- C:\Windows\system32\amdocl64.dll
2014-01-31 21:40:34 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2014-01-31 21:38:16 ----A---- C:\Windows\system32\OpenCL.dll
2014-01-31 21:38:12 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-01-31 21:26:40 ----A---- C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26:30 ----A---- C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26:28 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2014-01-31 21:26:20 ----A---- C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26:18 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2014-01-31 21:26:04 ----A---- C:\Windows\system32\aticaldd64.dll
2014-01-31 21:24:36 ----A---- C:\Windows\system32\mantle64.dll
2014-01-31 21:24:16 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2014-01-31 21:23:54 ----A---- C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22:52 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2014-01-31 21:22:04 ----A---- C:\Windows\system32\atio6axx.dll
2014-01-31 21:10:46 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2014-01-31 21:06:22 ----A---- C:\Windows\system32\atidemgy.dll
2014-01-31 21:06:12 ----A---- C:\Windows\system32\atimuixx.dll
2014-01-31 21:06:06 ----A---- C:\Windows\system32\atieclxx.exe
2014-01-31 21:05:12 ----A---- C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03:34 ----A---- C:\Windows\system32\atitmm64.dll
2014-01-31 21:03:32 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2014-01-31 20:59:12 ----A---- C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59:02 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2014-01-31 20:48:04 ----A---- C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47:58 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2014-01-31 20:37:06 ----A---- C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:30:14 ----A---- C:\Windows\system32\atiadlxx.dll
2014-01-31 20:30:02 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2014-01-31 20:29:46 ----A---- C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29:42 ----A---- C:\$tmplistf.txt
2014-01-31 20:29:42 ----A---- C:\$tmplistd.txt
2014-01-31 20:29:40 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2014-01-31 20:29:40 ----A---- C:\Windows\system32\atiglpxx.dll
2014-01-31 20:29:36 ----A---- C:\Windows\system32\atig6txx.dll
2014-01-31 20:29:20 ----A---- C:\Windows\TempFileCleaner.cmd
2014-01-31 20:29:14 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2014-01-31 20:28:50 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-01-31 20:26:26 ----D---- C:\MyBootCD
2014-01-31 20:25:02 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-01-31 20:23:44 ----A---- C:\Windows\system32\amdave64.dll
2014-01-31 20:23:38 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2014-01-31 20:23:34 ----D---- C:\ProgramData\Astroburn Lite
2014-01-31 20:23:26 ----A---- C:\Windows\system32\atisamu64.dll
2014-01-31 20:23:20 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2014-01-31 20:19:25 ----D---- C:\Users\Milos\AppData\Roaming\WinZip
2014-01-31 15:53:46 ----A---- C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49:02 ----A---- C:\Windows\SYSWOW64\kdbsdk32.dll
2014-01-26 16:52:29 ----A---- C:\Windows\SYSWOW64\MSMPIDE.DLL
2014-01-26 16:52:29 ----A---- C:\Windows\system32\pdfcmnnt.dll
2014-01-26 16:40:42 ----D---- C:\ProgramData\WinZip
2014-01-26 16:40:41 ----D---- C:\Program Files\WinZip
2014-01-24 08:43:10 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\java.exe
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-24 08:36:54 ----A---- C:\Windows\system32\win32k.sys
2014-01-24 08:36:53 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-24 07:19:36 ----D---- C:\Users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:42:32 ----D---- C:\Users\Milos\AppData\Roaming\PDF Architect
======List of files/folders modified in the last 1 months======
2014-02-16 22:11:53 ----D---- C:\Windows\Temp
2014-02-16 18:15:22 ----D---- C:\Windows\SysWOW64
2014-02-16 18:15:21 ----D---- C:\Windows\System32
2014-02-16 18:15:21 ----D---- C:\Windows\inf
2014-02-16 18:15:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-16 18:15:15 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-02-16 18:11:13 ----D---- C:\ProgramData\Origin
2014-02-16 18:09:57 ----D---- C:\Users\Milos\AppData\Roaming\Raptr
2014-02-16 18:09:37 ----D---- C:\Users\Milos\AppData\Roaming\Dropbox
2014-02-16 18:07:22 ----D---- C:\Windows\system32\config
2014-02-16 18:07:00 ----HD---- C:\ProgramData
2014-02-16 17:57:06 ----D---- C:\Windows\Microsoft.NET
2014-02-16 16:55:23 ----RD---- C:\Program Files
2014-02-16 16:34:32 ----D---- C:\Users\Milos\AppData\Roaming\Winamp
2014-02-16 16:04:05 ----D---- C:\Windows
2014-02-16 16:03:24 ----SHD---- C:\System Volume Information
2014-02-16 16:01:43 ----D---- C:\Windows\winsxs
2014-02-16 16:01:43 ----D---- C:\Windows\system32\catroot
2014-02-16 15:48:33 ----SHD---- C:\Config.Msi
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-02-16 15:48:03 ----D---- C:\Windows\system32\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\system32\DriverStore
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers\en-US
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers
2014-02-16 15:48:03 ----D---- C:\Windows\system32\cs-CZ
2014-02-16 15:37:38 ----D---- C:\Windows\system32\Tasks
2014-02-16 15:37:24 ----D---- C:\Windows\Tasks
2014-02-16 15:35:28 ----D---- C:\Windows\system32\MRT
2014-02-16 15:33:19 ----D---- C:\Windows\debug
2014-02-16 15:33:18 ----A---- C:\Windows\system32\MRT.exe
2014-02-16 15:33:12 ----D---- C:\Windows\system32\catroot2
2014-02-16 15:33:07 ----SHD---- C:\Windows\Installer
2014-02-16 15:33:05 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-13 21:12:19 ----RSD---- C:\Windows\assembly
2014-02-13 20:13:28 ----D---- C:\Program Files\Internet Explorer
2014-02-13 20:13:28 ----D---- C:\Program Files (x86)\Internet Explorer
2014-02-13 07:58:58 ----D---- C:\ProgramData\Microsoft Help
2014-02-13 07:56:02 ----A---- C:\Windows\win.ini
2014-02-11 21:46:06 ----D---- C:\Windows\Prefetch
2014-02-05 21:23:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-03 20:52:39 ----D---- C:\Program Files\Microsoft Security Client
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)
2014-02-03 20:27:37 ----D---- C:\Users\Milos\AppData\Roaming\GlarySoft
2014-02-03 19:01:50 ----SD---- C:\ProgramData\Microsoft
2014-02-03 08:07:28 ----D---- C:\Windows\SoftwareDistribution
2014-02-03 08:07:28 ----D---- C:\Users\Milos\AppData\Roaming\DAEMON Tools Lite
2014-02-02 18:21:47 ----D---- C:\Program Files (x86)\Raptr
2014-02-02 18:21:21 ----D---- C:\ProgramData\AMD
2014-02-02 18:21:12 ----D---- C:\Program Files\ATI Technologies
2014-02-02 18:17:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-02-02 18:17:30 ----D---- C:\Windows\system32\en-US
2014-02-02 18:14:36 ----D---- C:\AMD
2014-01-31 22:07:28 ----A---- C:\Windows\system32\atiuxp64.dll
2014-01-31 22:07:24 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2014-01-31 22:07:22 ----A---- C:\Windows\system32\aticfx64.dll
2014-01-31 22:07:20 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2014-01-31 22:07:14 ----A---- C:\Windows\system32\atidxx64.dll
2014-01-31 22:07:02 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2014-01-31 22:06:54 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2014-01-31 21:01:52 ----D---- C:\Temp
2014-01-30 19:32:30 ----D---- C:\Windows\rescache
2014-01-29 08:17:39 ----D---- C:\Windows\system32\wfp
2014-01-29 08:17:06 ----D---- C:\Windows\registration
2014-01-28 08:03:20 ----D---- C:\Windows\system32\CodeIntegrity
2014-01-28 08:02:45 ----SD---- C:\Users\Milos\AppData\Roaming\Microsoft
2014-01-26 20:53:28 ----D---- C:\Windows\PolicyDefinitions
2014-01-26 17:33:12 ----RSD---- C:\Windows\Fonts
2014-01-24 08:55:14 ----D---- C:\ProgramData\Oracle
2014-01-24 08:29:11 ----D---- C:\Windows\SYSWOW64\drivers
2014-01-24 08:29:11 ----D---- C:\Windows\system32\NDF
2014-01-24 08:29:11 ----D---- C:\Windows\pss
2014-01-24 08:29:11 ----D---- C:\Windows\AppCompat
2014-01-24 08:29:11 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-01-24 08:27:43 ----RHD---- C:\MSOCache
2014-01-24 08:27:43 ----D---- C:\Program Files (x86)\Common Files
2014-01-18 17:28:32 ----D---- C:\Users\Milos\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-29 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-08-10 19264]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-07 283064]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944]
R2 RtNdPt60;Realtek NDIS Protocol Driver; C:\Windows\system32\DRIVERS\RtNdPt60.sys [2011-06-15 32544]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-01-31 13929472]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-01-31 636928]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-19 94720]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2012-08-03 26136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2423-07-09 3760344]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-08-10 357184]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-08-10 789824]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-01-14 99800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-01-14 888536]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 26440]
R4 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2012-10-26 23680]
S3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver); C:\Windows\system32\DRIVERS\ASUSstpt.sys [2011-09-15 24648]
S3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM); C:\Windows\system32\DRIVERS\ASUSumsc.sys [2011-09-15 141896]
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cpuz130;cpuz130; \??\D:\Temp\cpuz130\cpuz_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-06-04 103448]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-12-23 21712]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVlan620.sys [2011-09-16 32360]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-06-04 203672]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVLAN620.sys [2011-09-16 32360]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-01-31 240128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-06-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-02-02 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-02-17 149120]
R2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [2012-10-12 2005504]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2013-04-24 483864]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-12-05 76888]
R2 TeamViewer9;TeamViewer 9; D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WDBackup;WD Backup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2013-11-02 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2013-11-02 270704]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-05-27 160768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-02-06 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-17 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-12-20 541760]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-29 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Logfile of random's system information tool 1.08 (written by random/random)
Run by Milos at 2014-02-17 07:14:39
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (37%) free of 114 GB
Total RAM: 16332 MB (82% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:14:40, on 17.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal
Running processes:
D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe
D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
D:\Program Files (x86)\ASUS\APRP\aprp.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
D:\Program Files (x86)\Mozilla Firefox\firefox.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Milos.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Tilt] C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
O4 - HKLM\..\Run: [Nástroj WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [ghost] C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [GrooveMonitor] D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12311 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
"D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:131214 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe"
"C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe"
"C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
taskeng.exe {C4F01E43-A2A6-44D9-A972-FA89A085E936}
"D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"D:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
"D:\Program Files (x86)\ASUS\APRP\aprp.exe"
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
"C:\Windows\system32\taskmgr.exe" /1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
"C:\Program Files\Microsoft Security Client\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 6E18FCF1-EE16-FB8E-7B76-374DAF1BE9B4 -Reinvoke
"D:\Program Files (x86)\Mozilla Firefox\firefox.exe"
taskeng.exe {A2A0F260-2274-4773-89AA-E332C0796D83}
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6712.2ae4db00.1628137743 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 6712 "\\.\pipe\gecko-crash-server-pipe.6712" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --proxy-stub-channel=Flash7164.5E5AC768.29482 --host-broker-channel=Flash7164.5E5AC768.8461 --host-pid=7164 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --channel=7132.0064F588.269041230 --proxy-stub-channel=Flash7164.5E5AC768.29482 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" --host-npapi-version=27 --type=renderer
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6712.16887800.883239152 "C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 6712 "\\.\pipe\gecko-crash-server-pipe.6712" plugin
C:\Windows\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"E:\Install\RSIT\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - D:\Program Files (x86)\Java\bin\ssv.dll [2013-12-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files (x86)\Java\bin\jp2ssv.dll [2013-12-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2424-07-27 7205592]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064]
"GrooveMonitor"=D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE [2013-03-06 945856]
""= []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-11-22 389120]
"DAEMON Tools Lite"=D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2014-01-08 55360]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-08-10 291648]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-11-29 284440]
"Adobe Reader Speed Launcher"=D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2013-12-18 40312]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
""= []
"Tilt"=C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [2011-04-20 729088]
"Nástroj WD Drive Unlocker"=C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [2012-06-13 1688008]
"(default)"= []
"WD Quick View"=C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [2013-08-14 5537136]
"ghost"=C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe [2010-02-08 192000]
"PMBVolumeWatcher"=D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-04-24 740888]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-01-31 767200]
C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2459-05-11 00:51:37 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2440-08-16 15:07:26 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\RtkApi64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RtkAPO64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RTCOM64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\WavesGUILib64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtPgEx64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtDataProc64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RCoInstII64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-02-16 17:50:40 ----D---- C:\AdwCleaner
2014-02-16 16:55:23 ----D---- C:\rsit
2014-02-16 16:55:23 ----D---- C:\Program Files\trend micro
2014-02-16 16:01:53 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-02-16 16:01:53 ----A---- C:\Windows\system32\mstscax.dll
2014-02-16 15:33:10 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprt.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-02-16 15:33:08 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-02-16 15:33:08 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-02-16 15:31:14 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-02-16 15:31:14 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-02-13 07:55:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-02-13 07:55:47 ----A---- C:\Windows\system32\vbscript.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\iernonce.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ie4uinit.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\mshtml.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\system32\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\ieapfltr.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-02-13 07:55:27 ----A---- C:\Windows\system32\ieframe.dll
2014-02-13 07:55:26 ----A---- C:\Windows\system32\jscript9.dll
2014-02-13 07:11:49 ----A---- C:\Windows\system32\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\system32\msxml3r.dll
2014-02-13 07:11:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\msdrm.dll
2014-02-13 07:11:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d2d1.dll
2014-02-13 07:11:42 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-02-03 19:01:50 ----D---- C:\Windows\Migration
2014-02-02 18:21:21 ----D---- C:\ProgramData\ATI
2014-02-02 18:21:21 ----D---- C:\Program Files (x86)\AMD AVT
2014-02-02 17:56:24 ----A---- C:\Windows\SYSWOW64\log.txt
2014-01-31 22:07:46 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2014-01-31 22:07:46 ----A---- C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\atimpc64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07:28 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2014-01-31 22:07:26 ----A---- C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07:10 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2014-01-31 22:06:38 ----A---- C:\Windows\system32\atiumd6a.dll
2014-01-31 22:06:34 ----A---- C:\Windows\system32\atiumd64.dll
2014-01-31 21:57:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-01-31 21:46:47 ----SHD---- C:\RECYCLER
2014-01-31 21:43:36 ----A---- C:\Windows\system32\clinfo.exe
2014-01-31 21:43:20 ----A---- C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43:14 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2014-01-31 21:43:08 ----A---- C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43:04 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2014-01-31 21:42:58 ----A---- C:\Windows\system32\amdocl64.dll
2014-01-31 21:40:34 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2014-01-31 21:38:16 ----A---- C:\Windows\system32\OpenCL.dll
2014-01-31 21:38:12 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-01-31 21:26:40 ----A---- C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26:30 ----A---- C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26:28 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2014-01-31 21:26:20 ----A---- C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26:18 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2014-01-31 21:26:04 ----A---- C:\Windows\system32\aticaldd64.dll
2014-01-31 21:24:36 ----A---- C:\Windows\system32\mantle64.dll
2014-01-31 21:24:16 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2014-01-31 21:23:54 ----A---- C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22:52 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2014-01-31 21:22:04 ----A---- C:\Windows\system32\atio6axx.dll
2014-01-31 21:10:46 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2014-01-31 21:06:22 ----A---- C:\Windows\system32\atidemgy.dll
2014-01-31 21:06:12 ----A---- C:\Windows\system32\atimuixx.dll
2014-01-31 21:06:06 ----A---- C:\Windows\system32\atieclxx.exe
2014-01-31 21:05:12 ----A---- C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03:34 ----A---- C:\Windows\system32\atitmm64.dll
2014-01-31 21:03:32 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2014-01-31 20:59:12 ----A---- C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59:02 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2014-01-31 20:48:04 ----A---- C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47:58 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2014-01-31 20:37:06 ----A---- C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:30:14 ----A---- C:\Windows\system32\atiadlxx.dll
2014-01-31 20:30:02 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2014-01-31 20:29:46 ----A---- C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29:42 ----A---- C:\$tmplistf.txt
2014-01-31 20:29:42 ----A---- C:\$tmplistd.txt
2014-01-31 20:29:40 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2014-01-31 20:29:40 ----A---- C:\Windows\system32\atiglpxx.dll
2014-01-31 20:29:36 ----A---- C:\Windows\system32\atig6txx.dll
2014-01-31 20:29:20 ----A---- C:\Windows\TempFileCleaner.cmd
2014-01-31 20:29:14 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2014-01-31 20:28:50 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-01-31 20:26:26 ----D---- C:\MyBootCD
2014-01-31 20:25:02 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-01-31 20:23:44 ----A---- C:\Windows\system32\amdave64.dll
2014-01-31 20:23:38 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2014-01-31 20:23:34 ----D---- C:\ProgramData\Astroburn Lite
2014-01-31 20:23:26 ----A---- C:\Windows\system32\atisamu64.dll
2014-01-31 20:23:20 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2014-01-31 20:19:25 ----D---- C:\Users\Milos\AppData\Roaming\WinZip
2014-01-31 15:53:46 ----A---- C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49:02 ----A---- C:\Windows\SYSWOW64\kdbsdk32.dll
2014-01-26 16:52:29 ----A---- C:\Windows\SYSWOW64\MSMPIDE.DLL
2014-01-26 16:52:29 ----A---- C:\Windows\system32\pdfcmnnt.dll
2014-01-26 16:40:42 ----D---- C:\ProgramData\WinZip
2014-01-26 16:40:41 ----D---- C:\Program Files\WinZip
2014-01-24 08:43:10 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\java.exe
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-24 08:36:54 ----A---- C:\Windows\system32\win32k.sys
2014-01-24 08:36:53 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-24 07:19:36 ----D---- C:\Users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:42:32 ----D---- C:\Users\Milos\AppData\Roaming\PDF Architect
======List of files/folders modified in the last 1 months======
2014-02-17 07:14:27 ----D---- C:\Windows\Temp
2014-02-17 07:13:54 ----D---- C:\Users\Milos\AppData\Roaming\Raptr
2014-02-17 07:13:39 ----D---- C:\Users\Milos\AppData\Roaming\Dropbox
2014-02-17 07:13:27 ----D---- C:\Windows\SysWOW64
2014-02-17 07:11:03 ----D---- C:\Windows\Tasks
2014-02-17 07:11:03 ----D---- C:\Windows\system32\Tasks
2014-02-16 22:17:02 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-02-16 18:15:21 ----D---- C:\Windows\System32
2014-02-16 18:15:21 ----D---- C:\Windows\inf
2014-02-16 18:15:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-16 18:11:13 ----D---- C:\ProgramData\Origin
2014-02-16 18:07:22 ----D---- C:\Windows\system32\config
2014-02-16 18:07:00 ----HD---- C:\ProgramData
2014-02-16 17:57:06 ----D---- C:\Windows\Microsoft.NET
2014-02-16 16:55:23 ----RD---- C:\Program Files
2014-02-16 16:34:32 ----D---- C:\Users\Milos\AppData\Roaming\Winamp
2014-02-16 16:04:05 ----D---- C:\Windows
2014-02-16 16:03:24 ----SHD---- C:\System Volume Information
2014-02-16 16:01:43 ----D---- C:\Windows\winsxs
2014-02-16 16:01:43 ----D---- C:\Windows\system32\catroot
2014-02-16 15:48:33 ----SHD---- C:\Config.Msi
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-02-16 15:48:03 ----D---- C:\Windows\system32\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\system32\DriverStore
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers\en-US
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers
2014-02-16 15:48:03 ----D---- C:\Windows\system32\cs-CZ
2014-02-16 15:35:28 ----D---- C:\Windows\system32\MRT
2014-02-16 15:33:19 ----D---- C:\Windows\debug
2014-02-16 15:33:18 ----A---- C:\Windows\system32\MRT.exe
2014-02-16 15:33:12 ----D---- C:\Windows\system32\catroot2
2014-02-16 15:33:07 ----SHD---- C:\Windows\Installer
2014-02-16 15:33:05 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-13 21:12:19 ----RSD---- C:\Windows\assembly
2014-02-13 20:13:28 ----D---- C:\Program Files\Internet Explorer
2014-02-13 20:13:28 ----D---- C:\Program Files (x86)\Internet Explorer
2014-02-13 07:58:58 ----D---- C:\ProgramData\Microsoft Help
2014-02-13 07:56:02 ----A---- C:\Windows\win.ini
2014-02-11 21:46:06 ----D---- C:\Windows\Prefetch
2014-02-05 21:23:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-03 20:52:39 ----D---- C:\Program Files\Microsoft Security Client
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)
2014-02-03 20:27:37 ----D---- C:\Users\Milos\AppData\Roaming\GlarySoft
2014-02-03 19:01:50 ----SD---- C:\ProgramData\Microsoft
2014-02-03 08:07:28 ----D---- C:\Windows\SoftwareDistribution
2014-02-03 08:07:28 ----D---- C:\Users\Milos\AppData\Roaming\DAEMON Tools Lite
2014-02-02 18:21:47 ----D---- C:\Program Files (x86)\Raptr
2014-02-02 18:21:21 ----D---- C:\ProgramData\AMD
2014-02-02 18:21:12 ----D---- C:\Program Files\ATI Technologies
2014-02-02 18:17:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-02-02 18:17:30 ----D---- C:\Windows\system32\en-US
2014-02-02 18:14:36 ----D---- C:\AMD
2014-01-31 22:07:28 ----A---- C:\Windows\system32\atiuxp64.dll
2014-01-31 22:07:24 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2014-01-31 22:07:22 ----A---- C:\Windows\system32\aticfx64.dll
2014-01-31 22:07:20 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2014-01-31 22:07:14 ----A---- C:\Windows\system32\atidxx64.dll
2014-01-31 22:07:02 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2014-01-31 22:06:54 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2014-01-31 21:01:52 ----D---- C:\Temp
2014-01-30 19:32:30 ----D---- C:\Windows\rescache
2014-01-29 08:17:39 ----D---- C:\Windows\system32\wfp
2014-01-29 08:17:06 ----D---- C:\Windows\registration
2014-01-28 08:03:20 ----D---- C:\Windows\system32\CodeIntegrity
2014-01-28 08:02:45 ----SD---- C:\Users\Milos\AppData\Roaming\Microsoft
2014-01-26 20:53:28 ----D---- C:\Windows\PolicyDefinitions
2014-01-26 17:33:12 ----RSD---- C:\Windows\Fonts
2014-01-24 08:55:14 ----D---- C:\ProgramData\Oracle
2014-01-24 08:29:11 ----D---- C:\Windows\SYSWOW64\drivers
2014-01-24 08:29:11 ----D---- C:\Windows\system32\NDF
2014-01-24 08:29:11 ----D---- C:\Windows\pss
2014-01-24 08:29:11 ----D---- C:\Windows\AppCompat
2014-01-24 08:29:11 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-01-24 08:27:43 ----RHD---- C:\MSOCache
2014-01-24 08:27:43 ----D---- C:\Program Files (x86)\Common Files
2014-01-18 17:28:32 ----D---- C:\Users\Milos\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-29 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-08-10 19264]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-07 283064]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944]
R2 RtNdPt60;Realtek NDIS Protocol Driver; C:\Windows\system32\DRIVERS\RtNdPt60.sys [2011-06-15 32544]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-01-31 13929472]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-01-31 636928]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-19 94720]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2012-08-03 26136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2423-07-09 3760344]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-08-10 357184]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-08-10 789824]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-01-14 99800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-01-14 888536]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 26440]
S3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver); C:\Windows\system32\DRIVERS\ASUSstpt.sys [2011-09-15 24648]
S3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM); C:\Windows\system32\DRIVERS\ASUSumsc.sys [2011-09-15 141896]
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cpuz130;cpuz130; \??\D:\Temp\cpuz130\cpuz_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-06-04 103448]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-12-23 21712]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVlan620.sys [2011-09-16 32360]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-06-04 203672]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVLAN620.sys [2011-09-16 32360]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-01-31 240128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-06-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-02-02 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-02-17 149120]
R2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [2012-10-12 2005504]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2013-04-24 483864]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-12-05 76888]
R2 TeamViewer9;TeamViewer 9; D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WDBackup;WD Backup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2013-11-02 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2013-11-02 270704]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-05-27 160768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-02-06 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-17 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-12-20 541760]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-29 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Run by Milos at 2014-02-17 07:14:39
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 43 GB (37%) free of 114 GB
Total RAM: 16332 MB (82% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:14:40, on 17.2.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal
Running processes:
D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe
D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
D:\Program Files (x86)\ASUS\APRP\aprp.exe
C:\PROGRA~2\Raptr\raptr.exe
C:\PROGRA~2\Raptr\raptr_im.exe
D:\Program Files (x86)\Mozilla Firefox\firefox.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Milos.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\bin\jp2ssv.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Tilt] C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe
O4 - HKLM\..\Run: [Nástroj WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [ghost] C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe
O4 - HKLM\..\Run: [PMBVolumeWatcher] D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [GrooveMonitor] D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe
O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WD Backup (WDBackup) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12311 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe"
C:\Windows\system32\CISVC.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
"D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
HydraDM64.exe -h:131214 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe"
"C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe"
"C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe"
"C:\Program Files (x86)\GIGABYTE\GHOST\GHOSTOPEN.exe"
"D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
taskeng.exe {C4F01E43-A2A6-44D9-A972-FA89A085E936}
"D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"D:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
"D:\Program Files (x86)\ASUS\APRP\aprp.exe"
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup
"C:\Windows\system32\taskmgr.exe" /1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
raptr_im.exe
"C:\Program Files (x86)\Raptr\raptr_ep64.exe"
"C:\Program Files\Microsoft Security Client\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 6E18FCF1-EE16-FB8E-7B76-374DAF1BE9B4 -Reinvoke
"D:\Program Files (x86)\Mozilla Firefox\firefox.exe"
taskeng.exe {A2A0F260-2274-4773-89AA-E332C0796D83}
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6712.2ae4db00.1628137743 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 6712 "\\.\pipe\gecko-crash-server-pipe.6712" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --proxy-stub-channel=Flash7164.5E5AC768.29482 --host-broker-channel=Flash7164.5E5AC768.8461 --host-pid=7164 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe" --channel=7132.0064F588.269041230 --proxy-stub-channel=Flash7164.5E5AC768.29482 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll" --host-npapi-version=27 --type=renderer
"D:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=6712.16887800.883239152 "C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll" -greomni "D:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "D:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "D:\Program Files (x86)\Mozilla Firefox\browser" 260915DCF3A62DA7 6712 "\\.\pipe\gecko-crash-server-pipe.6712" plugin
C:\Windows\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"E:\Install\RSIT\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - D:\Program Files (x86)\Java\bin\ssv.dll [2013-12-18 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files (x86)\Java\bin\jp2ssv.dll [2013-12-18 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2013-09-15 24462040]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2424-07-27 7205592]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064]
"GrooveMonitor"=D:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE [2013-03-06 945856]
""= []
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-11-22 389120]
"DAEMON Tools Lite"=D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2014-01-08 55360]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-08-10 291648]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-11-29 284440]
"Adobe Reader Speed Launcher"=D:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2013-12-18 40312]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
""= []
"Tilt"=C:\Program Files (x86)\GIGABYTE\GHOST\Tilt.exe [2011-04-20 729088]
"Nástroj WD Drive Unlocker"=C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [2012-06-13 1688008]
"(default)"= []
"WD Quick View"=C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [2013-08-14 5537136]
"ghost"=C:\Program Files (x86)\GIGABYTE\GHOST\ghostopen.exe [2010-02-08 192000]
"PMBVolumeWatcher"=D:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2013-04-24 740888]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-01-31 767200]
C:\Users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2459-05-11 00:51:37 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2440-08-16 15:07:26 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\RtkApi64.dll
2439-07-29 08:23:51 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RtkAPO64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\RTCOM64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2424-07-27 13:38:08 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\WavesGUILib64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtPgEx64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RtDataProc64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\RCoInstII64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2423-07-09 06:54:33 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-02-16 17:50:40 ----D---- C:\AdwCleaner
2014-02-16 16:55:23 ----D---- C:\rsit
2014-02-16 16:55:23 ----D---- C:\Program Files\trend micro
2014-02-16 16:01:53 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-02-16 16:01:53 ----A---- C:\Windows\system32\mstscax.dll
2014-02-16 15:33:10 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprtPS.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\wksprt.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TSWbPrxy.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\tsgqec.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\mstsc.exe
2014-02-16 15:33:09 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2014-02-16 15:33:09 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2014-02-16 15:33:08 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2014-02-16 15:33:08 ----A---- C:\Windows\system32\rdvidcrl.dll
2014-02-16 15:31:14 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-02-16 15:31:14 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-02-13 07:55:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-02-13 07:55:47 ----A---- C:\Windows\system32\vbscript.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\msrating.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieui.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\iernonce.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 07:55:30 ----A---- C:\Windows\system32\ie4uinit.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\mshtml.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\msfeeds.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jsproxy.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\jscript9diag.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieUnatt.exe
2014-02-13 07:55:29 ----A---- C:\Windows\system32\iesetup.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-02-13 07:55:29 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\wininet.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\urlmon.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\iertutil.dll
2014-02-13 07:55:28 ----A---- C:\Windows\system32\ieapfltr.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-02-13 07:55:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-02-13 07:55:27 ----A---- C:\Windows\system32\ieframe.dll
2014-02-13 07:55:26 ----A---- C:\Windows\system32\jscript9.dll
2014-02-13 07:11:49 ----A---- C:\Windows\system32\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-02-13 07:11:48 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-02-13 07:11:48 ----A---- C:\Windows\system32\msxml3r.dll
2014-02-13 07:11:47 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc_isv.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\secproc.dll
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\RMActivate.exe
2014-02-13 07:11:46 ----A---- C:\Windows\system32\msdrm.dll
2014-02-13 07:11:43 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d3d10warp.dll
2014-02-13 07:11:43 ----A---- C:\Windows\system32\d2d1.dll
2014-02-13 07:11:42 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-02-03 19:01:50 ----D---- C:\Windows\Migration
2014-02-02 18:21:21 ----D---- C:\ProgramData\ATI
2014-02-02 18:21:21 ----D---- C:\Program Files (x86)\AMD AVT
2014-02-02 17:56:24 ----A---- C:\Windows\SYSWOW64\log.txt
2014-01-31 22:07:46 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2014-01-31 22:07:46 ----A---- C:\Windows\system32\amdhcp64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\atimpc64.dll
2014-01-31 22:07:44 ----A---- C:\Windows\system32\amdpcom64.dll
2014-01-31 22:07:28 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2014-01-31 22:07:26 ----A---- C:\Windows\system32\atiu9p64.dll
2014-01-31 22:07:10 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2014-01-31 22:06:38 ----A---- C:\Windows\system32\atiumd6a.dll
2014-01-31 22:06:34 ----A---- C:\Windows\system32\atiumd64.dll
2014-01-31 21:57:20 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2014-01-31 21:46:47 ----SHD---- C:\RECYCLER
2014-01-31 21:43:36 ----A---- C:\Windows\system32\clinfo.exe
2014-01-31 21:43:20 ----A---- C:\Windows\system32\OpenVideo64.dll
2014-01-31 21:43:14 ----A---- C:\Windows\SYSWOW64\OpenVideo.dll
2014-01-31 21:43:08 ----A---- C:\Windows\system32\OVDecode64.dll
2014-01-31 21:43:04 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2014-01-31 21:42:58 ----A---- C:\Windows\system32\amdocl64.dll
2014-01-31 21:40:34 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2014-01-31 21:38:16 ----A---- C:\Windows\system32\OpenCL.dll
2014-01-31 21:38:12 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-01-31 21:26:40 ----A---- C:\Windows\system32\atiapfxx.exe
2014-01-31 21:26:30 ----A---- C:\Windows\system32\aticalrt64.dll
2014-01-31 21:26:28 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2014-01-31 21:26:20 ----A---- C:\Windows\system32\aticalcl64.dll
2014-01-31 21:26:18 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2014-01-31 21:26:04 ----A---- C:\Windows\system32\aticaldd64.dll
2014-01-31 21:24:36 ----A---- C:\Windows\system32\mantle64.dll
2014-01-31 21:24:16 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2014-01-31 21:23:54 ----A---- C:\Windows\system32\amdmantle64.dll
2014-01-31 21:22:52 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2014-01-31 21:22:04 ----A---- C:\Windows\system32\atio6axx.dll
2014-01-31 21:10:46 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2014-01-31 21:06:22 ----A---- C:\Windows\system32\atidemgy.dll
2014-01-31 21:06:12 ----A---- C:\Windows\system32\atimuixx.dll
2014-01-31 21:06:06 ----A---- C:\Windows\system32\atieclxx.exe
2014-01-31 21:05:12 ----A---- C:\Windows\system32\atiesrxx.exe
2014-01-31 21:03:34 ----A---- C:\Windows\system32\atitmm64.dll
2014-01-31 21:03:32 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2014-01-31 20:59:12 ----A---- C:\Windows\system32\mantleaxl64.dll
2014-01-31 20:59:02 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2014-01-31 20:48:04 ----A---- C:\Windows\system32\amdmmcl6.dll
2014-01-31 20:47:58 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2014-01-31 20:37:06 ----A---- C:\Windows\system32\coinst_13.350.dll
2014-01-31 20:30:14 ----A---- C:\Windows\system32\atiadlxx.dll
2014-01-31 20:30:02 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2014-01-31 20:29:46 ----A---- C:\Windows\system32\atig6pxx.dll
2014-01-31 20:29:42 ----A---- C:\$tmplistf.txt
2014-01-31 20:29:42 ----A---- C:\$tmplistd.txt
2014-01-31 20:29:40 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2014-01-31 20:29:40 ----A---- C:\Windows\system32\atiglpxx.dll
2014-01-31 20:29:36 ----A---- C:\Windows\system32\atig6txx.dll
2014-01-31 20:29:20 ----A---- C:\Windows\TempFileCleaner.cmd
2014-01-31 20:29:14 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2014-01-31 20:28:50 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2014-01-31 20:26:26 ----D---- C:\MyBootCD
2014-01-31 20:25:02 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2014-01-31 20:23:44 ----A---- C:\Windows\system32\amdave64.dll
2014-01-31 20:23:38 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2014-01-31 20:23:34 ----D---- C:\ProgramData\Astroburn Lite
2014-01-31 20:23:26 ----A---- C:\Windows\system32\atisamu64.dll
2014-01-31 20:23:20 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2014-01-31 20:19:25 ----D---- C:\Users\Milos\AppData\Roaming\WinZip
2014-01-31 15:53:46 ----A---- C:\Windows\system32\kdbsdk64.dll
2014-01-31 15:49:02 ----A---- C:\Windows\SYSWOW64\kdbsdk32.dll
2014-01-26 16:52:29 ----A---- C:\Windows\SYSWOW64\MSMPIDE.DLL
2014-01-26 16:52:29 ----A---- C:\Windows\system32\pdfcmnnt.dll
2014-01-26 16:40:42 ----D---- C:\ProgramData\WinZip
2014-01-26 16:40:41 ----D---- C:\Program Files\WinZip
2014-01-24 08:43:10 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-01-24 08:43:07 ----A---- C:\Windows\SYSWOW64\java.exe
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-24 08:36:55 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-24 08:36:54 ----A---- C:\Windows\system32\win32k.sys
2014-01-24 08:36:53 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-24 07:19:36 ----D---- C:\Users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:42:32 ----D---- C:\Users\Milos\AppData\Roaming\PDF Architect
======List of files/folders modified in the last 1 months======
2014-02-17 07:14:27 ----D---- C:\Windows\Temp
2014-02-17 07:13:54 ----D---- C:\Users\Milos\AppData\Roaming\Raptr
2014-02-17 07:13:39 ----D---- C:\Users\Milos\AppData\Roaming\Dropbox
2014-02-17 07:13:27 ----D---- C:\Windows\SysWOW64
2014-02-17 07:11:03 ----D---- C:\Windows\Tasks
2014-02-17 07:11:03 ----D---- C:\Windows\system32\Tasks
2014-02-16 22:17:02 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-02-16 18:15:21 ----D---- C:\Windows\System32
2014-02-16 18:15:21 ----D---- C:\Windows\inf
2014-02-16 18:15:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-02-16 18:11:13 ----D---- C:\ProgramData\Origin
2014-02-16 18:07:22 ----D---- C:\Windows\system32\config
2014-02-16 18:07:00 ----HD---- C:\ProgramData
2014-02-16 17:57:06 ----D---- C:\Windows\Microsoft.NET
2014-02-16 16:55:23 ----RD---- C:\Program Files
2014-02-16 16:34:32 ----D---- C:\Users\Milos\AppData\Roaming\Winamp
2014-02-16 16:04:05 ----D---- C:\Windows
2014-02-16 16:03:24 ----SHD---- C:\System Volume Information
2014-02-16 16:01:43 ----D---- C:\Windows\winsxs
2014-02-16 16:01:43 ----D---- C:\Windows\system32\catroot
2014-02-16 15:48:33 ----SHD---- C:\Config.Msi
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-02-16 15:48:03 ----D---- C:\Windows\system32\wbem
2014-02-16 15:48:03 ----D---- C:\Windows\system32\DriverStore
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers\en-US
2014-02-16 15:48:03 ----D---- C:\Windows\system32\drivers
2014-02-16 15:48:03 ----D---- C:\Windows\system32\cs-CZ
2014-02-16 15:35:28 ----D---- C:\Windows\system32\MRT
2014-02-16 15:33:19 ----D---- C:\Windows\debug
2014-02-16 15:33:18 ----A---- C:\Windows\system32\MRT.exe
2014-02-16 15:33:12 ----D---- C:\Windows\system32\catroot2
2014-02-16 15:33:07 ----SHD---- C:\Windows\Installer
2014-02-16 15:33:05 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-02-13 21:12:19 ----RSD---- C:\Windows\assembly
2014-02-13 20:13:28 ----D---- C:\Program Files\Internet Explorer
2014-02-13 20:13:28 ----D---- C:\Program Files (x86)\Internet Explorer
2014-02-13 07:58:58 ----D---- C:\ProgramData\Microsoft Help
2014-02-13 07:56:02 ----A---- C:\Windows\win.ini
2014-02-11 21:46:06 ----D---- C:\Windows\Prefetch
2014-02-05 21:23:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-02-03 20:52:39 ----D---- C:\Program Files\Microsoft Security Client
2014-02-03 20:52:38 ----D---- C:\Program Files (x86)
2014-02-03 20:27:37 ----D---- C:\Users\Milos\AppData\Roaming\GlarySoft
2014-02-03 19:01:50 ----SD---- C:\ProgramData\Microsoft
2014-02-03 08:07:28 ----D---- C:\Windows\SoftwareDistribution
2014-02-03 08:07:28 ----D---- C:\Users\Milos\AppData\Roaming\DAEMON Tools Lite
2014-02-02 18:21:47 ----D---- C:\Program Files (x86)\Raptr
2014-02-02 18:21:21 ----D---- C:\ProgramData\AMD
2014-02-02 18:21:12 ----D---- C:\Program Files\ATI Technologies
2014-02-02 18:17:30 ----D---- C:\Windows\SYSWOW64\en-US
2014-02-02 18:17:30 ----D---- C:\Windows\system32\en-US
2014-02-02 18:14:36 ----D---- C:\AMD
2014-01-31 22:07:28 ----A---- C:\Windows\system32\atiuxp64.dll
2014-01-31 22:07:24 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2014-01-31 22:07:22 ----A---- C:\Windows\system32\aticfx64.dll
2014-01-31 22:07:20 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2014-01-31 22:07:14 ----A---- C:\Windows\system32\atidxx64.dll
2014-01-31 22:07:02 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2014-01-31 22:06:54 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2014-01-31 21:01:52 ----D---- C:\Temp
2014-01-30 19:32:30 ----D---- C:\Windows\rescache
2014-01-29 08:17:39 ----D---- C:\Windows\system32\wfp
2014-01-29 08:17:06 ----D---- C:\Windows\registration
2014-01-28 08:03:20 ----D---- C:\Windows\system32\CodeIntegrity
2014-01-28 08:02:45 ----SD---- C:\Users\Milos\AppData\Roaming\Microsoft
2014-01-26 20:53:28 ----D---- C:\Windows\PolicyDefinitions
2014-01-26 17:33:12 ----RSD---- C:\Windows\Fonts
2014-01-24 08:55:14 ----D---- C:\ProgramData\Oracle
2014-01-24 08:29:11 ----D---- C:\Windows\SYSWOW64\drivers
2014-01-24 08:29:11 ----D---- C:\Windows\system32\NDF
2014-01-24 08:29:11 ----D---- C:\Windows\pss
2014-01-24 08:29:11 ----D---- C:\Windows\AppCompat
2014-01-24 08:29:11 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-01-24 08:27:43 ----RHD---- C:\MSOCache
2014-01-24 08:27:43 ----D---- C:\Program Files (x86)\Common Files
2014-01-18 17:28:32 ----D---- C:\Users\Milos\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-11-29 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-08-10 19264]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-07 283064]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944]
R2 RtNdPt60;Realtek NDIS Protocol Driver; C:\Windows\system32\DRIVERS\RtNdPt60.sys [2011-06-15 32544]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-01-31 13929472]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-01-31 636928]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-19 94720]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2012-08-03 26136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2423-07-09 3760344]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-08-10 357184]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-08-10 789824]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-01-14 99800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-01-14 888536]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 26440]
S3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver); C:\Windows\system32\DRIVERS\ASUSstpt.sys [2011-09-15 24648]
S3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM); C:\Windows\system32\DRIVERS\ASUSumsc.sys [2011-09-15 141896]
S3 BthAvrcp;Bluetooth AVRCP Profile; C:\Windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 29184]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cpuz130;cpuz130; \??\D:\Temp\cpuz130\cpuz_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-06-04 103448]
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-12-23 21712]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVlan620.sys [2011-09-16 32360]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-06-04 203672]
S3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2); C:\Windows\system32\DRIVERS\RtTeam60.sys [2011-06-15 48416]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVLAN620.sys [2011-09-16 32360]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 43976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-01-31 240128]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2012-06-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2012-02-02 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2012-02-17 149120]
R2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [2012-10-12 2005504]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2009-07-14 19456]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; D:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2013-04-24 483864]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-12-05 76888]
R2 TeamViewer9;TeamViewer 9; D:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WDBackup;WD Backup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2013-11-02 1042808]
R2 WDDriveService;WD Drive Manager; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2013-11-02 270704]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05 257928]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 116648]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-05-27 160768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-02-06 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-17 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-12-20 541760]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-29 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Smazáno. Nastala nějaká zjměna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Bohužel, stále se při přihlášení nějaká služba na pozadí loguje přes 30000ms.
Chyby v správě událostí jsou tyto:
a.) Při čekání na odezvu transakce služby IPBusEnum bylo dosaženo časového limitu (30000 ms). ID události 7011
b.) Při čekání na odezvu transakce služby AudioEndpointBuilder bylo dosaženo časového limitu (30000 ms). ID události 7011
c.) Při čekání na odezvu transakce služby TrkWks bylo dosaženo časového limitu (30000 ms). ID události 7011
e.) U služby zařazování tisku došlo k chybě sdílení tiskárny HP LaserJet 1160 s názvem sdíleného prostředku HP LaserJet 1160. Chyba 2114. Ostatní uživatelé v síti nemohou tiskárnu použít. Název protokolu - Microsoft-Windows-PrintService/Správce. ID události 315.
f.) Relaci Homegroup Log se nepodařilo spustit, protože došlo k následující chybě: 0xC0000035. Název protokolu - Microsoft-Windows-Kernel-EventTracing/Admin. ID události 2.
Chyby v správě událostí jsou tyto:
a.) Při čekání na odezvu transakce služby IPBusEnum bylo dosaženo časového limitu (30000 ms). ID události 7011
b.) Při čekání na odezvu transakce služby AudioEndpointBuilder bylo dosaženo časového limitu (30000 ms). ID události 7011
c.) Při čekání na odezvu transakce služby TrkWks bylo dosaženo časového limitu (30000 ms). ID události 7011
e.) U služby zařazování tisku došlo k chybě sdílení tiskárny HP LaserJet 1160 s názvem sdíleného prostředku HP LaserJet 1160. Chyba 2114. Ostatní uživatelé v síti nemohou tiskárnu použít. Název protokolu - Microsoft-Windows-PrintService/Správce. ID události 315.
f.) Relaci Homegroup Log se nepodařilo spustit, protože došlo k následující chybě: 0xC0000035. Název protokolu - Microsoft-Windows-Kernel-EventTracing/Admin. ID události 2.
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Dejte log Combofix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
ComboFix 14-02-16.01 - Milos 17.02.2014 23:01:18.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.16332.13808 [GMT 1:00]
Spuštěný z: d:\users\Milos\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\page
c:\programdata\page\page.ico
c:\programdata\page\page.URL
c:\users\Milos\AppData\Local\assembly\tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-01-17 do 2014-02-17 )))))))))))))))))))))))))))))))
.
.
2459-05-10 23:51 . 2459-05-10 23:51 64624 ----a-w- c:\windows\system32\drivers\HECIx64.sys
2440-08-16 14:07 . 2440-08-16 14:07 1286400 ----a-w- c:\windows\system32\MaxxSpeechAPO64.dll
2439-07-29 07:23 . 2439-07-29 07:23 27644160 ----a-w- c:\windows\system32\MaxxAudioVnA64.dll
2439-07-29 07:23 . 2439-07-29 07:23 1021656 ----a-w- c:\windows\system32\RtkApi64.dll
2424-07-27 12:38 . 2424-07-27 12:38 912184 ----a-w- c:\windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 12:38 . 2424-07-27 12:38 41974272 ----a-w- c:\windows\system32\RCoRes64.dat
2424-07-27 12:38 . 2424-07-27 12:38 2588888 ----a-w- c:\windows\system32\RtkAPO64.dll
2424-07-27 12:38 . 2424-07-27 12:38 2036992 ----a-w- c:\windows\system32\MaxxAudioEQ64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1922304 ----a-w- c:\windows\system32\MaxxAudioRealtek264.dll
2424-07-27 12:38 . 2424-07-27 12:38 14153984 ----a-w- c:\windows\system32\MaxxAudioRealtek64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1345280 ----a-w- c:\windows\system32\MaxxAudioAPO5064.dll
2424-07-27 12:38 . 2424-07-27 12:38 1286872 ----a-w- c:\windows\system32\RTCOM64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1013504 ----a-w- c:\windows\system32\MaxxAudioAPOShell64.dll
2423-07-09 05:54 . 2423-07-09 05:54 618200 ----a-w- c:\windows\system32\RtDataProc64.dll
2423-07-09 05:54 . 2423-07-09 05:54 5753112 ----a-w- c:\windows\system32\NAHIMICAPOlfx.dll
2423-07-09 05:54 . 2423-07-09 05:54 3899648 ----a-w- c:\windows\system32\MaxxAudioVnN64.dll
2423-07-09 05:54 . 2423-07-09 05:54 3760344 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2423-07-09 05:54 . 2423-07-09 05:54 2810072 ----a-w- c:\windows\system32\RtPgEx64.dll
2423-07-09 05:54 . 2423-07-09 05:54 2103040 ----a-w- c:\windows\system32\WavesGUILib64.dll
2423-07-09 05:54 . 2423-07-09 05:54 154840 ----a-w- c:\windows\system32\RCoInstII64.dll
2014-02-17 22:03 . 2014-02-17 22:03 -------- d-----w- c:\users\Milos\AppData\Local\temp
2014-02-17 19:36 . 2013-12-03 18:28 10315576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{456A9F3D-FC4E-46E6-B9ED-94479311E99C}\mpengine.dll
2014-02-16 16:50 . 2014-02-16 17:07 -------- d-----w- C:\AdwCleaner
2014-02-16 15:55 . 2014-02-17 06:14 -------- d-----w- c:\program files\trend micro
2014-02-16 15:55 . 2014-02-16 15:55 -------- d-----w- C:\rsit
2014-02-16 15:03 . 2013-12-03 18:28 10315576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-02-16 15:01 . 2013-11-26 23:29 5693440 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-02-16 15:01 . 2013-11-26 22:49 6573056 ----a-w- c:\windows\system32\mstscax.dll
2014-02-16 14:31 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-02-16 14:31 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-02-13 06:11 . 2013-12-06 02:30 1882112 ----a-w- c:\windows\system32\msxml3.dll
2014-02-03 19:53 . 2014-02-03 19:53 965000 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DFA79B6C-61B9-4C2A-BB80-558810910CD4}\gapaengine.dll
2014-02-03 19:52 . 2014-02-03 19:52 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2014-02-03 19:46 . 2013-12-16 00:54 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22E4258C-0810-4F12-9CDA-11436A6512FD}\mpengine.dll
2014-02-03 18:01 . 2014-02-03 18:01 -------- d-----w- c:\windows\Migration
2014-02-02 17:21 . 2014-02-02 17:21 -------- d-----w- c:\programdata\ATI
2014-02-02 17:21 . 2014-02-02 17:21 -------- d-----w- c:\program files (x86)\AMD AVT
2014-01-31 21:07 . 2014-01-31 21:07 127872 ----a-w- c:\windows\system32\amdhcp64.dll
2014-01-31 21:07 . 2014-01-31 21:07 117560 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\atimpc64.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2014-01-31 21:07 . 2014-01-31 21:07 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2014-01-31 21:07 . 2014-01-31 21:07 116024 ----a-w- c:\windows\system32\atiu9p64.dll
2014-01-31 21:07 . 2014-01-31 21:07 8760320 ----a-w- c:\windows\SysWow64\atidxx32.dll
2014-01-31 21:06 . 2014-01-31 21:06 10899624 ----a-w- c:\windows\system32\atiumd6a.dll
2014-01-31 21:06 . 2014-01-31 21:06 7892000 ----a-w- c:\windows\system32\atiumd64.dll
2014-01-31 20:57 . 2014-01-31 20:57 13929472 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-01-31 20:43 . 2014-01-31 20:43 230912 ----a-w- c:\windows\system32\clinfo.exe
2014-01-31 20:43 . 2014-01-31 20:43 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2014-01-31 20:43 . 2014-01-31 20:43 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2014-01-31 20:43 . 2014-01-31 20:43 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2014-01-31 20:43 . 2014-01-31 20:43 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2014-01-31 20:42 . 2014-01-31 20:42 28424704 ----a-w- c:\windows\system32\amdocl64.dll
2014-01-31 20:40 . 2014-01-31 20:40 23903232 ----a-w- c:\windows\SysWow64\amdocl.dll
2014-01-31 20:38 . 2014-01-31 20:38 65024 ----a-w- c:\windows\system32\OpenCL.dll
2014-01-31 20:38 . 2014-01-31 20:38 58880 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-01-31 20:26 . 2014-01-31 20:26 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2014-01-31 20:26 . 2014-01-31 20:26 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2014-01-31 20:26 . 2014-01-31 20:26 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2014-01-31 20:26 . 2014-01-31 20:26 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2014-01-31 20:26 . 2014-01-31 20:26 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2014-01-31 20:26 . 2014-01-31 20:26 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2014-01-31 20:24 . 2014-01-31 20:24 126464 ----a-w- c:\windows\system32\mantle64.dll
2014-01-31 20:24 . 2014-01-31 20:24 113152 ----a-w- c:\windows\SysWow64\mantle32.dll
2014-01-31 20:23 . 2014-01-31 20:23 5350400 ----a-w- c:\windows\system32\amdmantle64.dll
2014-01-31 20:22 . 2014-01-31 20:22 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2014-01-31 20:22 . 2014-01-31 20:22 27152384 ----a-w- c:\windows\system32\atio6axx.dll
2014-01-31 20:10 . 2014-01-31 20:10 4286976 ----a-w- c:\windows\SysWow64\amdmantle32.dll
2014-01-31 20:06 . 2014-01-31 20:06 442368 ----a-w- c:\windows\system32\atidemgy.dll
2014-01-31 20:06 . 2014-01-31 20:06 31232 ----a-w- c:\windows\system32\atimuixx.dll
2014-01-31 20:06 . 2014-01-31 20:06 586240 ----a-w- c:\windows\system32\atieclxx.exe
2014-01-31 20:05 . 2014-01-31 20:05 240128 ----a-w- c:\windows\system32\atiesrxx.exe
2014-01-31 20:03 . 2014-01-31 20:03 190976 ----a-w- c:\windows\system32\atitmm64.dll
2014-01-31 20:03 . 2014-01-31 20:03 22834688 ----a-w- c:\windows\SysWow64\atioglxx.dll
2014-01-31 19:59 . 2014-01-31 19:59 81920 ----a-w- c:\windows\system32\mantleaxl64.dll
2014-01-31 19:59 . 2014-01-31 19:59 79360 ----a-w- c:\windows\SysWow64\mantleaxl32.dll
2014-01-31 19:48 . 2014-01-31 19:48 44544 ----a-w- c:\windows\system32\amdmmcl6.dll
2014-01-31 19:47 . 2014-01-31 19:47 35840 ----a-w- c:\windows\SysWow64\amdmmcl.dll
2014-01-31 19:37 . 2014-01-31 19:37 806912 ----a-w- c:\windows\system32\coinst_13.350.dll
2014-01-31 19:30 . 2014-01-31 19:30 1148416 ----a-w- c:\windows\system32\atiadlxx.dll
2014-01-31 19:30 . 2014-01-31 19:30 828416 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2014-01-31 19:29 . 2014-01-31 19:29 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 146432 ----a-w- c:\windows\system32\atig6txx.dll
2014-01-31 19:29 . 2012-10-29 16:30 27159 ----a-w- c:\windows\TempFileCleaner.cmd
2014-01-31 19:29 . 2014-01-31 19:29 133120 ----a-w- c:\windows\SysWow64\atigktxx.dll
2014-01-31 19:28 . 2014-01-31 19:28 636928 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2014-01-31 19:26 . 2014-01-31 19:27 -------- d-----w- C:\MyBootCD
2014-01-31 19:25 . 2014-01-31 19:25 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-01-31 19:23 . 2014-01-31 19:23 95744 ----a-w- c:\windows\system32\amdave64.dll
2014-01-31 19:23 . 2014-01-31 19:23 90112 ----a-w- c:\windows\SysWow64\amdave32.dll
2014-01-31 19:23 . 2014-02-03 19:32 -------- d-----w- c:\programdata\Astroburn Lite
2014-01-31 19:23 . 2014-01-31 19:23 89088 ----a-w- c:\windows\system32\atisamu64.dll
2014-01-31 19:23 . 2014-01-31 19:23 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2014-01-31 19:19 . 2014-01-31 19:19 -------- d-----w- c:\users\Milos\AppData\Roaming\WinZip
2014-01-31 14:53 . 2014-01-31 14:53 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2014-01-31 14:49 . 2014-01-31 14:49 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2014-01-26 15:52 . 2005-03-11 23:07 87040 ----a-w- c:\windows\system32\pdfcmnnt.dll
2014-01-26 15:52 . 2004-03-08 23:00 662288 ----a-w- c:\windows\SysWow64\MSCOMCT2.OCX
2014-01-26 15:52 . 1998-07-05 23:00 23552 ----a-w- c:\windows\SysWow64\MSMPIDE.DLL
2014-01-26 15:52 . 1998-06-23 23:00 137000 ----a-w- c:\windows\SysWow64\MSMAPI32.OCX
2014-01-26 15:40 . 2014-02-13 19:20 -------- d-----w- c:\users\Milos\AppData\Local\WinZip
2014-01-26 15:40 . 2014-01-26 15:40 -------- d-----w- c:\programdata\WinZip
2014-01-26 15:40 . 2014-01-26 15:40 -------- d-----w- c:\program files\WinZip
2014-01-24 07:43 . 2013-12-18 20:09 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-24 07:36 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-01-24 07:36 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-24 07:36 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-01-24 07:36 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-01-24 07:36 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-01-24 07:36 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-01-24 07:36 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-01-24 07:36 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-01-24 07:36 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-01-24 06:19 . 2014-01-24 07:34 -------- d-----w- c:\users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:07 . 2014-01-22 21:07 -------- d-----w- c:\program files (x86)\Common Files\PDF Architect
2014-01-22 20:42 . 2014-01-22 21:10 -------- d-----w- c:\users\Milos\AppData\Roaming\PDF Architect
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-17 20:37 . 2012-12-14 19:01 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-02-16 21:17 . 2012-12-14 19:01 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-02-16 16:25 . 2013-01-05 20:43 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2014-02-16 14:33 . 2012-08-29 18:56 88567024 ----a-w- c:\windows\system32\MRT.exe
2014-02-05 20:23 . 2012-08-29 20:14 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-05 20:23 . 2012-08-29 20:14 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-01-31 21:07 . 2013-11-22 16:26 143304 ----a-w- c:\windows\system32\atiuxp64.dll
2014-01-31 21:07 . 2013-12-06 22:02 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2014-01-31 21:07 . 2013-11-22 16:26 1328328 ----a-w- c:\windows\system32\aticfx64.dll
2014-01-31 21:07 . 2013-11-22 16:26 1106360 ----a-w- c:\windows\SysWow64\aticfx32.dll
2014-01-31 21:07 . 2013-11-22 16:26 10171456 ----a-w- c:\windows\system32\atidxx64.dll
2014-01-31 21:07 . 2013-12-06 21:59 10145128 ----a-w- c:\windows\SysWow64\atiumdva.dll
2014-01-31 21:06 . 2013-12-06 21:58 6716264 ----a-w- c:\windows\SysWow64\atiumdag.dll
2014-01-16 08:59 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-01-14 20:48 . 2014-01-14 20:48 888536 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-01-14 20:48 . 2014-01-14 20:48 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-01-14 20:48 . 2012-08-29 21:46 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2014-01-14 20:48 . 2014-01-14 20:48 99800 ----a-w- c:\windows\system32\drivers\TeeDriverx64.sys
2014-01-14 20:48 . 2014-01-14 20:48 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2013-12-28 19:24 . 2012-08-29 19:05 4684384 ----a-w- c:\windows\PE_Rom.dll
2013-12-23 14:38 . 2013-12-23 14:38 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-12-19 16:45 . 2013-12-19 16:45 94720 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2013-12-19 16:44 . 2013-12-19 16:44 110080 ----a-w- c:\windows\system32\DelayAPO.dll
2013-12-07 17:14 . 2013-12-07 17:14 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-12-05 19:36 . 2012-12-14 19:01 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-11-23 18:26 . 2013-12-12 19:21 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-12 19:21 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-11-22 16:09 . 2013-11-22 16:09 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe
2013-11-22 16:09 . 2013-11-22 16:09 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe
2013-11-22 16:09 . 2013-11-22 16:09 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe
2013-11-22 16:09 . 2013-11-22 16:09 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"="d:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2013-04-22 720064]
"GrooveMonitor"="d:\program files (x86)\Microsoft Office\Office14\GROOVEMN.EXE" [2013-03-06 945856]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2013-11-22 389120]
"DAEMON Tools Lite"="d:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2014-01-08 55360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-08-10 291648]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"Adobe Reader Speed Launcher"="d:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-12-18 40312]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"Tilt"="c:\program files (x86)\GIGABYTE\GHOST\Tilt.exe" [2011-04-20 729088]
"Nástroj WD Drive Unlocker"="c:\program files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe" [2012-06-13 1688008]
"WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2013-08-14 5537136]
"ghost"="c:\program files (x86)\GIGABYTE\GHOST\ghostopen.exe" [2010-02-08 192000]
"PMBVolumeWatcher"="d:\program files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [2013-04-24 740888]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-01-31 767200]
.
c:\users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-1-24 33509888]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"CHotkey"=mHotkey.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64;d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [x]
R3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver);c:\windows\system32\DRIVERS\ASUSstpt.sys;c:\windows\SYSNATIVE\DRIVERS\ASUSstpt.sys [x]
R3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM);c:\windows\system32\DRIVERS\ASUSumsc.sys;c:\windows\SYSNATIVE\DRIVERS\ASUSumsc.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys;c:\windows\SYSNATIVE\DRIVERS\BthAvrcp.sys [x]
R3 cpuz130;cpuz130;d:\temp\cpuz130\cpuz_x64.sys;d:\temp\cpuz130\cpuz_x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);c:\windows\system32\DRIVERS\RtVLAN620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVLAN620.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [x]
S2 AsusFanControlService;AsusFanControlService;c:\program files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe;c:\program files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [x]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;d:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe;d:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 TeamViewer9;TeamViewer 9;d:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;d:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [x]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]
S3 ASUSFILTER;ASUSFILTER;SysWow64\drivers\ASUSFILTER.sys;SysWow64\drivers\ASUSFILTER.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
S4 IOMap;IOMap;c:\windows\system32\drivers\IOMap64.sys;c:\windows\SYSNATIVE\drivers\IOMap64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-04 06:32 1211720 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-02-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-29 20:23]
.
2014-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 17:47]
.
2014-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 17:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 190536]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2424-07-27 7205592]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 1266912]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
mSearch Bar = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - d:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\s1amq8tc.default-1354039466817\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.cz/#hl=cs&source=hp&q=
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-(default) - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\AIDA64Driver]
"ImagePath"="\??\d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"qgif4.dll"=multi:"2011-10-10T17:42\00gif\00\00"
"qico4.dll"=multi:"2011-10-10T17:42\00ico\00\00"
"qjpeg4.dll"=multi:"2011-10-10T17:42\00jpeg\00jpg\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QTextCodecFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"2011-10-10T17:42\00GB18030\00GBK\00GB2312\00CP936\00MS936\00windows-936\00MIB: 114\00MIB: 113\00MIB: 2025\00\00"
"qkrcodecs4.dll"=multi:"2011-10-10T17:42\00EUC-KR\00cp949\00MIB: 38\00MIB: -949\00\00"
"qtwcodecs4.dll"=multi:"2011-10-10T17:42\00Big5\00Big5-HKSCS\00Big5-ETen\00CP950\00MIB: 2026\00MIB: 2101\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpcodecs4.dll"=multi:"40602\000\00Windows msvc release full-config\002011-10-10T17:42\00\00"
"qjpcodecsd4.dll"=multi:"40703\001\00Windows msvc debug full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qkrcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qtwcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"Microsoft.VC80.CRT.manifest"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"msvcr80.dll"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"qgif4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qico4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpeg4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-02-17 23:04:32
ComboFix-quarantined-files.txt 2014-02-17 22:04
.
Před spuštěním: Volných bajtů: 44 572 958 720
Po spuštění: Volných bajtů: 44 378 624 000
.
- - End Of File - - F16AE697FB46995AAA4C791E90A38A1F
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.16332.13808 [GMT 1:00]
Spuštěný z: d:\users\Milos\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\page
c:\programdata\page\page.ico
c:\programdata\page\page.URL
c:\users\Milos\AppData\Local\assembly\tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-01-17 do 2014-02-17 )))))))))))))))))))))))))))))))
.
.
2459-05-10 23:51 . 2459-05-10 23:51 64624 ----a-w- c:\windows\system32\drivers\HECIx64.sys
2440-08-16 14:07 . 2440-08-16 14:07 1286400 ----a-w- c:\windows\system32\MaxxSpeechAPO64.dll
2439-07-29 07:23 . 2439-07-29 07:23 27644160 ----a-w- c:\windows\system32\MaxxAudioVnA64.dll
2439-07-29 07:23 . 2439-07-29 07:23 1021656 ----a-w- c:\windows\system32\RtkApi64.dll
2424-07-27 12:38 . 2424-07-27 12:38 912184 ----a-w- c:\windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 12:38 . 2424-07-27 12:38 41974272 ----a-w- c:\windows\system32\RCoRes64.dat
2424-07-27 12:38 . 2424-07-27 12:38 2588888 ----a-w- c:\windows\system32\RtkAPO64.dll
2424-07-27 12:38 . 2424-07-27 12:38 2036992 ----a-w- c:\windows\system32\MaxxAudioEQ64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1922304 ----a-w- c:\windows\system32\MaxxAudioRealtek264.dll
2424-07-27 12:38 . 2424-07-27 12:38 14153984 ----a-w- c:\windows\system32\MaxxAudioRealtek64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1345280 ----a-w- c:\windows\system32\MaxxAudioAPO5064.dll
2424-07-27 12:38 . 2424-07-27 12:38 1286872 ----a-w- c:\windows\system32\RTCOM64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1013504 ----a-w- c:\windows\system32\MaxxAudioAPOShell64.dll
2423-07-09 05:54 . 2423-07-09 05:54 618200 ----a-w- c:\windows\system32\RtDataProc64.dll
2423-07-09 05:54 . 2423-07-09 05:54 5753112 ----a-w- c:\windows\system32\NAHIMICAPOlfx.dll
2423-07-09 05:54 . 2423-07-09 05:54 3899648 ----a-w- c:\windows\system32\MaxxAudioVnN64.dll
2423-07-09 05:54 . 2423-07-09 05:54 3760344 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2423-07-09 05:54 . 2423-07-09 05:54 2810072 ----a-w- c:\windows\system32\RtPgEx64.dll
2423-07-09 05:54 . 2423-07-09 05:54 2103040 ----a-w- c:\windows\system32\WavesGUILib64.dll
2423-07-09 05:54 . 2423-07-09 05:54 154840 ----a-w- c:\windows\system32\RCoInstII64.dll
2014-02-17 22:03 . 2014-02-17 22:03 -------- d-----w- c:\users\Milos\AppData\Local\temp
2014-02-17 19:36 . 2013-12-03 18:28 10315576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{456A9F3D-FC4E-46E6-B9ED-94479311E99C}\mpengine.dll
2014-02-16 16:50 . 2014-02-16 17:07 -------- d-----w- C:\AdwCleaner
2014-02-16 15:55 . 2014-02-17 06:14 -------- d-----w- c:\program files\trend micro
2014-02-16 15:55 . 2014-02-16 15:55 -------- d-----w- C:\rsit
2014-02-16 15:03 . 2013-12-03 18:28 10315576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-02-16 15:01 . 2013-11-26 23:29 5693440 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-02-16 15:01 . 2013-11-26 22:49 6573056 ----a-w- c:\windows\system32\mstscax.dll
2014-02-16 14:31 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-02-16 14:31 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-02-13 06:11 . 2013-12-06 02:30 1882112 ----a-w- c:\windows\system32\msxml3.dll
2014-02-03 19:53 . 2014-02-03 19:53 965000 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DFA79B6C-61B9-4C2A-BB80-558810910CD4}\gapaengine.dll
2014-02-03 19:52 . 2014-02-03 19:52 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2014-02-03 19:46 . 2013-12-16 00:54 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22E4258C-0810-4F12-9CDA-11436A6512FD}\mpengine.dll
2014-02-03 18:01 . 2014-02-03 18:01 -------- d-----w- c:\windows\Migration
2014-02-02 17:21 . 2014-02-02 17:21 -------- d-----w- c:\programdata\ATI
2014-02-02 17:21 . 2014-02-02 17:21 -------- d-----w- c:\program files (x86)\AMD AVT
2014-01-31 21:07 . 2014-01-31 21:07 127872 ----a-w- c:\windows\system32\amdhcp64.dll
2014-01-31 21:07 . 2014-01-31 21:07 117560 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\atimpc64.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2014-01-31 21:07 . 2014-01-31 21:07 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2014-01-31 21:07 . 2014-01-31 21:07 116024 ----a-w- c:\windows\system32\atiu9p64.dll
2014-01-31 21:07 . 2014-01-31 21:07 8760320 ----a-w- c:\windows\SysWow64\atidxx32.dll
2014-01-31 21:06 . 2014-01-31 21:06 10899624 ----a-w- c:\windows\system32\atiumd6a.dll
2014-01-31 21:06 . 2014-01-31 21:06 7892000 ----a-w- c:\windows\system32\atiumd64.dll
2014-01-31 20:57 . 2014-01-31 20:57 13929472 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-01-31 20:43 . 2014-01-31 20:43 230912 ----a-w- c:\windows\system32\clinfo.exe
2014-01-31 20:43 . 2014-01-31 20:43 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2014-01-31 20:43 . 2014-01-31 20:43 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2014-01-31 20:43 . 2014-01-31 20:43 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2014-01-31 20:43 . 2014-01-31 20:43 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2014-01-31 20:42 . 2014-01-31 20:42 28424704 ----a-w- c:\windows\system32\amdocl64.dll
2014-01-31 20:40 . 2014-01-31 20:40 23903232 ----a-w- c:\windows\SysWow64\amdocl.dll
2014-01-31 20:38 . 2014-01-31 20:38 65024 ----a-w- c:\windows\system32\OpenCL.dll
2014-01-31 20:38 . 2014-01-31 20:38 58880 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-01-31 20:26 . 2014-01-31 20:26 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2014-01-31 20:26 . 2014-01-31 20:26 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2014-01-31 20:26 . 2014-01-31 20:26 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2014-01-31 20:26 . 2014-01-31 20:26 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2014-01-31 20:26 . 2014-01-31 20:26 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2014-01-31 20:26 . 2014-01-31 20:26 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2014-01-31 20:24 . 2014-01-31 20:24 126464 ----a-w- c:\windows\system32\mantle64.dll
2014-01-31 20:24 . 2014-01-31 20:24 113152 ----a-w- c:\windows\SysWow64\mantle32.dll
2014-01-31 20:23 . 2014-01-31 20:23 5350400 ----a-w- c:\windows\system32\amdmantle64.dll
2014-01-31 20:22 . 2014-01-31 20:22 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2014-01-31 20:22 . 2014-01-31 20:22 27152384 ----a-w- c:\windows\system32\atio6axx.dll
2014-01-31 20:10 . 2014-01-31 20:10 4286976 ----a-w- c:\windows\SysWow64\amdmantle32.dll
2014-01-31 20:06 . 2014-01-31 20:06 442368 ----a-w- c:\windows\system32\atidemgy.dll
2014-01-31 20:06 . 2014-01-31 20:06 31232 ----a-w- c:\windows\system32\atimuixx.dll
2014-01-31 20:06 . 2014-01-31 20:06 586240 ----a-w- c:\windows\system32\atieclxx.exe
2014-01-31 20:05 . 2014-01-31 20:05 240128 ----a-w- c:\windows\system32\atiesrxx.exe
2014-01-31 20:03 . 2014-01-31 20:03 190976 ----a-w- c:\windows\system32\atitmm64.dll
2014-01-31 20:03 . 2014-01-31 20:03 22834688 ----a-w- c:\windows\SysWow64\atioglxx.dll
2014-01-31 19:59 . 2014-01-31 19:59 81920 ----a-w- c:\windows\system32\mantleaxl64.dll
2014-01-31 19:59 . 2014-01-31 19:59 79360 ----a-w- c:\windows\SysWow64\mantleaxl32.dll
2014-01-31 19:48 . 2014-01-31 19:48 44544 ----a-w- c:\windows\system32\amdmmcl6.dll
2014-01-31 19:47 . 2014-01-31 19:47 35840 ----a-w- c:\windows\SysWow64\amdmmcl.dll
2014-01-31 19:37 . 2014-01-31 19:37 806912 ----a-w- c:\windows\system32\coinst_13.350.dll
2014-01-31 19:30 . 2014-01-31 19:30 1148416 ----a-w- c:\windows\system32\atiadlxx.dll
2014-01-31 19:30 . 2014-01-31 19:30 828416 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2014-01-31 19:29 . 2014-01-31 19:29 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 146432 ----a-w- c:\windows\system32\atig6txx.dll
2014-01-31 19:29 . 2012-10-29 16:30 27159 ----a-w- c:\windows\TempFileCleaner.cmd
2014-01-31 19:29 . 2014-01-31 19:29 133120 ----a-w- c:\windows\SysWow64\atigktxx.dll
2014-01-31 19:28 . 2014-01-31 19:28 636928 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2014-01-31 19:26 . 2014-01-31 19:27 -------- d-----w- C:\MyBootCD
2014-01-31 19:25 . 2014-01-31 19:25 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-01-31 19:23 . 2014-01-31 19:23 95744 ----a-w- c:\windows\system32\amdave64.dll
2014-01-31 19:23 . 2014-01-31 19:23 90112 ----a-w- c:\windows\SysWow64\amdave32.dll
2014-01-31 19:23 . 2014-02-03 19:32 -------- d-----w- c:\programdata\Astroburn Lite
2014-01-31 19:23 . 2014-01-31 19:23 89088 ----a-w- c:\windows\system32\atisamu64.dll
2014-01-31 19:23 . 2014-01-31 19:23 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2014-01-31 19:19 . 2014-01-31 19:19 -------- d-----w- c:\users\Milos\AppData\Roaming\WinZip
2014-01-31 14:53 . 2014-01-31 14:53 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2014-01-31 14:49 . 2014-01-31 14:49 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2014-01-26 15:52 . 2005-03-11 23:07 87040 ----a-w- c:\windows\system32\pdfcmnnt.dll
2014-01-26 15:52 . 2004-03-08 23:00 662288 ----a-w- c:\windows\SysWow64\MSCOMCT2.OCX
2014-01-26 15:52 . 1998-07-05 23:00 23552 ----a-w- c:\windows\SysWow64\MSMPIDE.DLL
2014-01-26 15:52 . 1998-06-23 23:00 137000 ----a-w- c:\windows\SysWow64\MSMAPI32.OCX
2014-01-26 15:40 . 2014-02-13 19:20 -------- d-----w- c:\users\Milos\AppData\Local\WinZip
2014-01-26 15:40 . 2014-01-26 15:40 -------- d-----w- c:\programdata\WinZip
2014-01-26 15:40 . 2014-01-26 15:40 -------- d-----w- c:\program files\WinZip
2014-01-24 07:43 . 2013-12-18 20:09 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-24 07:36 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-01-24 07:36 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-24 07:36 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-01-24 07:36 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-01-24 07:36 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-01-24 07:36 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-01-24 07:36 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-01-24 07:36 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-01-24 07:36 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-01-24 06:19 . 2014-01-24 07:34 -------- d-----w- c:\users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:07 . 2014-01-22 21:07 -------- d-----w- c:\program files (x86)\Common Files\PDF Architect
2014-01-22 20:42 . 2014-01-22 21:10 -------- d-----w- c:\users\Milos\AppData\Roaming\PDF Architect
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-17 20:37 . 2012-12-14 19:01 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-02-16 21:17 . 2012-12-14 19:01 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-02-16 16:25 . 2013-01-05 20:43 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2014-02-16 14:33 . 2012-08-29 18:56 88567024 ----a-w- c:\windows\system32\MRT.exe
2014-02-05 20:23 . 2012-08-29 20:14 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-05 20:23 . 2012-08-29 20:14 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-01-31 21:07 . 2013-11-22 16:26 143304 ----a-w- c:\windows\system32\atiuxp64.dll
2014-01-31 21:07 . 2013-12-06 22:02 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2014-01-31 21:07 . 2013-11-22 16:26 1328328 ----a-w- c:\windows\system32\aticfx64.dll
2014-01-31 21:07 . 2013-11-22 16:26 1106360 ----a-w- c:\windows\SysWow64\aticfx32.dll
2014-01-31 21:07 . 2013-11-22 16:26 10171456 ----a-w- c:\windows\system32\atidxx64.dll
2014-01-31 21:07 . 2013-12-06 21:59 10145128 ----a-w- c:\windows\SysWow64\atiumdva.dll
2014-01-31 21:06 . 2013-12-06 21:58 6716264 ----a-w- c:\windows\SysWow64\atiumdag.dll
2014-01-16 08:59 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-01-14 20:48 . 2014-01-14 20:48 888536 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-01-14 20:48 . 2014-01-14 20:48 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-01-14 20:48 . 2012-08-29 21:46 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2014-01-14 20:48 . 2014-01-14 20:48 99800 ----a-w- c:\windows\system32\drivers\TeeDriverx64.sys
2014-01-14 20:48 . 2014-01-14 20:48 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2013-12-28 19:24 . 2012-08-29 19:05 4684384 ----a-w- c:\windows\PE_Rom.dll
2013-12-23 14:38 . 2013-12-23 14:38 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-12-19 16:45 . 2013-12-19 16:45 94720 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2013-12-19 16:44 . 2013-12-19 16:44 110080 ----a-w- c:\windows\system32\DelayAPO.dll
2013-12-07 17:14 . 2013-12-07 17:14 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-12-05 19:36 . 2012-12-14 19:01 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-11-23 18:26 . 2013-12-12 19:21 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-12 19:21 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-11-22 16:09 . 2013-11-22 16:09 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe
2013-11-22 16:09 . 2013-11-22 16:09 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe
2013-11-22 16:09 . 2013-11-22 16:09 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe
2013-11-22 16:09 . 2013-11-22 16:09 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"="d:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2013-04-22 720064]
"GrooveMonitor"="d:\program files (x86)\Microsoft Office\Office14\GROOVEMN.EXE" [2013-03-06 945856]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2013-11-22 389120]
"DAEMON Tools Lite"="d:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2014-01-08 55360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-08-10 291648]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"Adobe Reader Speed Launcher"="d:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-12-18 40312]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"Tilt"="c:\program files (x86)\GIGABYTE\GHOST\Tilt.exe" [2011-04-20 729088]
"Nástroj WD Drive Unlocker"="c:\program files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe" [2012-06-13 1688008]
"WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2013-08-14 5537136]
"ghost"="c:\program files (x86)\GIGABYTE\GHOST\ghostopen.exe" [2010-02-08 192000]
"PMBVolumeWatcher"="d:\program files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [2013-04-24 740888]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-01-31 767200]
.
c:\users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-1-24 33509888]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"CHotkey"=mHotkey.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64;d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [x]
R3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver);c:\windows\system32\DRIVERS\ASUSstpt.sys;c:\windows\SYSNATIVE\DRIVERS\ASUSstpt.sys [x]
R3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM);c:\windows\system32\DRIVERS\ASUSumsc.sys;c:\windows\SYSNATIVE\DRIVERS\ASUSumsc.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys;c:\windows\SYSNATIVE\DRIVERS\BthAvrcp.sys [x]
R3 cpuz130;cpuz130;d:\temp\cpuz130\cpuz_x64.sys;d:\temp\cpuz130\cpuz_x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);c:\windows\system32\DRIVERS\RtVLAN620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVLAN620.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [x]
S2 AsusFanControlService;AsusFanControlService;c:\program files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe;c:\program files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [x]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;d:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe;d:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 TeamViewer9;TeamViewer 9;d:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;d:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [x]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]
S3 ASUSFILTER;ASUSFILTER;SysWow64\drivers\ASUSFILTER.sys;SysWow64\drivers\ASUSFILTER.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
S4 IOMap;IOMap;c:\windows\system32\drivers\IOMap64.sys;c:\windows\SYSNATIVE\drivers\IOMap64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-04 06:32 1211720 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-02-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-29 20:23]
.
2014-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 17:47]
.
2014-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 17:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 190536]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2424-07-27 7205592]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 1266912]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
mSearch Bar = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - d:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\s1amq8tc.default-1354039466817\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.cz/#hl=cs&source=hp&q=
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-(default) - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\AIDA64Driver]
"ImagePath"="\??\d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"qgif4.dll"=multi:"2011-10-10T17:42\00gif\00\00"
"qico4.dll"=multi:"2011-10-10T17:42\00ico\00\00"
"qjpeg4.dll"=multi:"2011-10-10T17:42\00jpeg\00jpg\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QTextCodecFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"2011-10-10T17:42\00GB18030\00GBK\00GB2312\00CP936\00MS936\00windows-936\00MIB: 114\00MIB: 113\00MIB: 2025\00\00"
"qkrcodecs4.dll"=multi:"2011-10-10T17:42\00EUC-KR\00cp949\00MIB: 38\00MIB: -949\00\00"
"qtwcodecs4.dll"=multi:"2011-10-10T17:42\00Big5\00Big5-HKSCS\00Big5-ETen\00CP950\00MIB: 2026\00MIB: 2101\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpcodecs4.dll"=multi:"40602\000\00Windows msvc release full-config\002011-10-10T17:42\00\00"
"qjpcodecsd4.dll"=multi:"40703\001\00Windows msvc debug full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qkrcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qtwcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"Microsoft.VC80.CRT.manifest"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"msvcr80.dll"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"qgif4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qico4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpeg4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-02-17 23:04:32
ComboFix-quarantined-files.txt 2014-02-17 22:04
.
Před spuštěním: Volných bajtů: 44 572 958 720
Po spuštění: Volných bajtů: 44 378 624 000
.
- - End Of File - - F16AE697FB46995AAA4C791E90A38A1F
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Otevřte poznámkový bloka zkopírujte do něj:
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.KillAll::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
Reglock::
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QTextCodecFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
Reboot::
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
ComboFix 14-02-18.01 - Milos 18.02.2014 19:51:45.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.16332.13762 [GMT 1:00]
Spuštěný z: d:\users\Milos\Desktop\ComboFix.exe
Použité ovládací přepínače :: d:\users\Milos\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-01-18 do 2014-02-18 )))))))))))))))))))))))))))))))
.
.
2459-05-10 23:51 . 2459-05-10 23:51 64624 ----a-w- c:\windows\system32\drivers\HECIx64.sys
2440-08-16 14:07 . 2440-08-16 14:07 1286400 ----a-w- c:\windows\system32\MaxxSpeechAPO64.dll
2439-07-29 07:23 . 2439-07-29 07:23 27644160 ----a-w- c:\windows\system32\MaxxAudioVnA64.dll
2439-07-29 07:23 . 2439-07-29 07:23 1021656 ----a-w- c:\windows\system32\RtkApi64.dll
2424-07-27 12:38 . 2424-07-27 12:38 912184 ----a-w- c:\windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 12:38 . 2424-07-27 12:38 41974272 ----a-w- c:\windows\system32\RCoRes64.dat
2424-07-27 12:38 . 2424-07-27 12:38 2588888 ----a-w- c:\windows\system32\RtkAPO64.dll
2424-07-27 12:38 . 2424-07-27 12:38 2036992 ----a-w- c:\windows\system32\MaxxAudioEQ64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1922304 ----a-w- c:\windows\system32\MaxxAudioRealtek264.dll
2424-07-27 12:38 . 2424-07-27 12:38 14153984 ----a-w- c:\windows\system32\MaxxAudioRealtek64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1345280 ----a-w- c:\windows\system32\MaxxAudioAPO5064.dll
2424-07-27 12:38 . 2424-07-27 12:38 1286872 ----a-w- c:\windows\system32\RTCOM64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1013504 ----a-w- c:\windows\system32\MaxxAudioAPOShell64.dll
2423-07-09 05:54 . 2423-07-09 05:54 618200 ----a-w- c:\windows\system32\RtDataProc64.dll
2423-07-09 05:54 . 2423-07-09 05:54 5753112 ----a-w- c:\windows\system32\NAHIMICAPOlfx.dll
2423-07-09 05:54 . 2423-07-09 05:54 3899648 ----a-w- c:\windows\system32\MaxxAudioVnN64.dll
2423-07-09 05:54 . 2423-07-09 05:54 3760344 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2423-07-09 05:54 . 2423-07-09 05:54 2810072 ----a-w- c:\windows\system32\RtPgEx64.dll
2423-07-09 05:54 . 2423-07-09 05:54 2103040 ----a-w- c:\windows\system32\WavesGUILib64.dll
2423-07-09 05:54 . 2423-07-09 05:54 154840 ----a-w- c:\windows\system32\RCoInstII64.dll
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\Milos\AppData\Local\temp
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\Mcx1-MILOS-PC\AppData\Local\temp
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\Ivanka\AppData\Local\temp
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-02-18 06:17 . 2014-02-03 19:53 965000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-02-18 06:17 . 2014-02-03 19:53 965000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{66AA59A6-4D10-4D38-BCC4-B63BAABF17F9}\gapaengine.dll
2014-02-18 06:17 . 2014-02-06 09:01 10536864 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7E27F04F-50C7-4B85-917A-B81EDCAFD38C}\mpengine.dll
2014-02-17 19:36 . 2013-12-03 18:28 10315576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-02-16 16:50 . 2014-02-16 17:07 -------- d-----w- C:\AdwCleaner
2014-02-16 15:55 . 2014-02-17 06:14 -------- d-----w- c:\program files\trend micro
2014-02-16 15:55 . 2014-02-16 15:55 -------- d-----w- C:\rsit
2014-02-16 15:01 . 2013-11-26 23:29 5693440 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-02-16 15:01 . 2013-11-26 22:49 6573056 ----a-w- c:\windows\system32\mstscax.dll
2014-02-16 14:31 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-02-16 14:31 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-02-13 06:11 . 2013-12-06 02:30 1882112 ----a-w- c:\windows\system32\msxml3.dll
2014-02-03 19:52 . 2014-02-03 19:52 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2014-02-03 19:46 . 2013-12-16 00:54 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22E4258C-0810-4F12-9CDA-11436A6512FD}\mpengine.dll
2014-02-03 18:01 . 2014-02-03 18:01 -------- d-----w- c:\windows\Migration
2014-02-02 17:21 . 2014-02-02 17:21 -------- d-----w- c:\programdata\ATI
2014-02-02 17:21 . 2014-02-02 17:21 -------- d-----w- c:\program files (x86)\AMD AVT
2014-01-31 21:07 . 2014-01-31 21:07 127872 ----a-w- c:\windows\system32\amdhcp64.dll
2014-01-31 21:07 . 2014-01-31 21:07 117560 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\atimpc64.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2014-01-31 21:07 . 2014-01-31 21:07 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2014-01-31 21:07 . 2014-01-31 21:07 116024 ----a-w- c:\windows\system32\atiu9p64.dll
2014-01-31 21:07 . 2014-01-31 21:07 8760320 ----a-w- c:\windows\SysWow64\atidxx32.dll
2014-01-31 21:06 . 2014-01-31 21:06 10899624 ----a-w- c:\windows\system32\atiumd6a.dll
2014-01-31 21:06 . 2014-01-31 21:06 7892000 ----a-w- c:\windows\system32\atiumd64.dll
2014-01-31 20:57 . 2014-01-31 20:57 13929472 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-01-31 20:43 . 2014-01-31 20:43 230912 ----a-w- c:\windows\system32\clinfo.exe
2014-01-31 20:43 . 2014-01-31 20:43 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2014-01-31 20:43 . 2014-01-31 20:43 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2014-01-31 20:43 . 2014-01-31 20:43 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2014-01-31 20:43 . 2014-01-31 20:43 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2014-01-31 20:42 . 2014-01-31 20:42 28424704 ----a-w- c:\windows\system32\amdocl64.dll
2014-01-31 20:40 . 2014-01-31 20:40 23903232 ----a-w- c:\windows\SysWow64\amdocl.dll
2014-01-31 20:38 . 2014-01-31 20:38 65024 ----a-w- c:\windows\system32\OpenCL.dll
2014-01-31 20:38 . 2014-01-31 20:38 58880 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-01-31 20:26 . 2014-01-31 20:26 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2014-01-31 20:26 . 2014-01-31 20:26 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2014-01-31 20:26 . 2014-01-31 20:26 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2014-01-31 20:26 . 2014-01-31 20:26 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2014-01-31 20:26 . 2014-01-31 20:26 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2014-01-31 20:26 . 2014-01-31 20:26 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2014-01-31 20:24 . 2014-01-31 20:24 126464 ----a-w- c:\windows\system32\mantle64.dll
2014-01-31 20:24 . 2014-01-31 20:24 113152 ----a-w- c:\windows\SysWow64\mantle32.dll
2014-01-31 20:23 . 2014-01-31 20:23 5350400 ----a-w- c:\windows\system32\amdmantle64.dll
2014-01-31 20:22 . 2014-01-31 20:22 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2014-01-31 20:22 . 2014-01-31 20:22 27152384 ----a-w- c:\windows\system32\atio6axx.dll
2014-01-31 20:10 . 2014-01-31 20:10 4286976 ----a-w- c:\windows\SysWow64\amdmantle32.dll
2014-01-31 20:06 . 2014-01-31 20:06 442368 ----a-w- c:\windows\system32\atidemgy.dll
2014-01-31 20:06 . 2014-01-31 20:06 31232 ----a-w- c:\windows\system32\atimuixx.dll
2014-01-31 20:06 . 2014-01-31 20:06 586240 ----a-w- c:\windows\system32\atieclxx.exe
2014-01-31 20:05 . 2014-01-31 20:05 240128 ----a-w- c:\windows\system32\atiesrxx.exe
2014-01-31 20:03 . 2014-01-31 20:03 190976 ----a-w- c:\windows\system32\atitmm64.dll
2014-01-31 20:03 . 2014-01-31 20:03 22834688 ----a-w- c:\windows\SysWow64\atioglxx.dll
2014-01-31 19:59 . 2014-01-31 19:59 81920 ----a-w- c:\windows\system32\mantleaxl64.dll
2014-01-31 19:59 . 2014-01-31 19:59 79360 ----a-w- c:\windows\SysWow64\mantleaxl32.dll
2014-01-31 19:48 . 2014-01-31 19:48 44544 ----a-w- c:\windows\system32\amdmmcl6.dll
2014-01-31 19:47 . 2014-01-31 19:47 35840 ----a-w- c:\windows\SysWow64\amdmmcl.dll
2014-01-31 19:37 . 2014-01-31 19:37 806912 ----a-w- c:\windows\system32\coinst_13.350.dll
2014-01-31 19:30 . 2014-01-31 19:30 1148416 ----a-w- c:\windows\system32\atiadlxx.dll
2014-01-31 19:30 . 2014-01-31 19:30 828416 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2014-01-31 19:29 . 2014-01-31 19:29 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 146432 ----a-w- c:\windows\system32\atig6txx.dll
2014-01-31 19:29 . 2012-10-29 16:30 27159 ----a-w- c:\windows\TempFileCleaner.cmd
2014-01-31 19:29 . 2014-01-31 19:29 133120 ----a-w- c:\windows\SysWow64\atigktxx.dll
2014-01-31 19:28 . 2014-01-31 19:28 636928 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2014-01-31 19:26 . 2014-01-31 19:27 -------- d-----w- C:\MyBootCD
2014-01-31 19:25 . 2014-01-31 19:25 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-01-31 19:23 . 2014-01-31 19:23 95744 ----a-w- c:\windows\system32\amdave64.dll
2014-01-31 19:23 . 2014-01-31 19:23 90112 ----a-w- c:\windows\SysWow64\amdave32.dll
2014-01-31 19:23 . 2014-02-03 19:32 -------- d-----w- c:\programdata\Astroburn Lite
2014-01-31 19:23 . 2014-01-31 19:23 89088 ----a-w- c:\windows\system32\atisamu64.dll
2014-01-31 19:23 . 2014-01-31 19:23 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2014-01-31 19:19 . 2014-01-31 19:19 -------- d-----w- c:\users\Milos\AppData\Roaming\WinZip
2014-01-31 14:53 . 2014-01-31 14:53 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2014-01-31 14:49 . 2014-01-31 14:49 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2014-01-26 15:52 . 2005-03-11 23:07 87040 ----a-w- c:\windows\system32\pdfcmnnt.dll
2014-01-26 15:52 . 2004-03-08 23:00 662288 ----a-w- c:\windows\SysWow64\MSCOMCT2.OCX
2014-01-26 15:52 . 1998-07-05 23:00 23552 ----a-w- c:\windows\SysWow64\MSMPIDE.DLL
2014-01-26 15:52 . 1998-06-23 23:00 137000 ----a-w- c:\windows\SysWow64\MSMAPI32.OCX
2014-01-26 15:40 . 2014-02-13 19:20 -------- d-----w- c:\users\Milos\AppData\Local\WinZip
2014-01-26 15:40 . 2014-01-26 15:40 -------- d-----w- c:\programdata\WinZip
2014-01-26 15:40 . 2014-01-26 15:40 -------- d-----w- c:\program files\WinZip
2014-01-24 07:43 . 2013-12-18 20:09 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-24 07:36 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-01-24 07:36 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-24 07:36 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-01-24 07:36 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-01-24 07:36 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-01-24 07:36 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-01-24 07:36 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-01-24 07:36 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-01-24 07:36 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-01-24 06:19 . 2014-01-24 07:34 -------- d-----w- c:\users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:07 . 2014-01-22 21:07 -------- d-----w- c:\program files (x86)\Common Files\PDF Architect
2014-01-22 20:42 . 2014-01-22 21:10 -------- d-----w- c:\users\Milos\AppData\Roaming\PDF Architect
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-17 20:37 . 2012-12-14 19:01 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-02-16 21:17 . 2012-12-14 19:01 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-02-16 16:25 . 2013-01-05 20:43 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2014-02-16 14:33 . 2012-08-29 18:56 88567024 ----a-w- c:\windows\system32\MRT.exe
2014-02-05 20:23 . 2012-08-29 20:14 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-05 20:23 . 2012-08-29 20:14 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-01-31 21:07 . 2013-11-22 16:26 143304 ----a-w- c:\windows\system32\atiuxp64.dll
2014-01-31 21:07 . 2013-12-06 22:02 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2014-01-31 21:07 . 2013-11-22 16:26 1328328 ----a-w- c:\windows\system32\aticfx64.dll
2014-01-31 21:07 . 2013-11-22 16:26 1106360 ----a-w- c:\windows\SysWow64\aticfx32.dll
2014-01-31 21:07 . 2013-11-22 16:26 10171456 ----a-w- c:\windows\system32\atidxx64.dll
2014-01-31 21:07 . 2013-12-06 21:59 10145128 ----a-w- c:\windows\SysWow64\atiumdva.dll
2014-01-31 21:06 . 2013-12-06 21:58 6716264 ----a-w- c:\windows\SysWow64\atiumdag.dll
2014-01-16 08:59 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-01-14 20:48 . 2014-01-14 20:48 888536 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-01-14 20:48 . 2014-01-14 20:48 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-01-14 20:48 . 2012-08-29 21:46 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2014-01-14 20:48 . 2014-01-14 20:48 99800 ----a-w- c:\windows\system32\drivers\TeeDriverx64.sys
2014-01-14 20:48 . 2014-01-14 20:48 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2013-12-28 19:24 . 2012-08-29 19:05 4684384 ----a-w- c:\windows\PE_Rom.dll
2013-12-23 14:38 . 2013-12-23 14:38 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-12-19 16:45 . 2013-12-19 16:45 94720 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2013-12-19 16:44 . 2013-12-19 16:44 110080 ----a-w- c:\windows\system32\DelayAPO.dll
2013-12-07 17:14 . 2013-12-07 17:14 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-12-05 19:36 . 2012-12-14 19:01 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-11-23 18:26 . 2013-12-12 19:21 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-12 19:21 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-11-22 16:09 . 2013-11-22 16:09 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe
2013-11-22 16:09 . 2013-11-22 16:09 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe
2013-11-22 16:09 . 2013-11-22 16:09 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe
2013-11-22 16:09 . 2013-11-22 16:09 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"="d:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2013-04-22 720064]
"GrooveMonitor"="d:\program files (x86)\Microsoft Office\Office14\GROOVEMN.EXE" [2013-03-06 945856]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2013-11-22 389120]
"DAEMON Tools Lite"="d:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2014-01-08 55360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-08-10 291648]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"Adobe Reader Speed Launcher"="d:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-12-18 40312]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"Tilt"="c:\program files (x86)\GIGABYTE\GHOST\Tilt.exe" [2011-04-20 729088]
"Nástroj WD Drive Unlocker"="c:\program files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe" [2012-06-13 1688008]
"WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2013-08-14 5537136]
"ghost"="c:\program files (x86)\GIGABYTE\GHOST\ghostopen.exe" [2010-02-08 192000]
"PMBVolumeWatcher"="d:\program files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [2013-04-24 740888]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-01-31 767200]
.
c:\users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-1-24 33509888]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"CHotkey"=mHotkey.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64;d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [x]
R3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver);c:\windows\system32\DRIVERS\ASUSstpt.sys;c:\windows\SYSNATIVE\DRIVERS\ASUSstpt.sys [x]
R3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM);c:\windows\system32\DRIVERS\ASUSumsc.sys;c:\windows\SYSNATIVE\DRIVERS\ASUSumsc.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys;c:\windows\SYSNATIVE\DRIVERS\BthAvrcp.sys [x]
R3 cpuz130;cpuz130;d:\temp\cpuz130\cpuz_x64.sys;d:\temp\cpuz130\cpuz_x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);c:\windows\system32\DRIVERS\RtVLAN620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVLAN620.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [x]
S2 AsusFanControlService;AsusFanControlService;c:\program files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe;c:\program files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;d:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe;d:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 TeamViewer9;TeamViewer 9;d:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;d:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [x]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]
S3 ASUSFILTER;ASUSFILTER;SysWow64\drivers\ASUSFILTER.sys;SysWow64\drivers\ASUSFILTER.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-04 06:32 1211720 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-02-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-29 20:23]
.
2014-02-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 17:47]
.
2014-02-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 17:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 190536]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2424-07-27 7205592]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 1266912]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
mSearch Bar = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - d:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\s1amq8tc.default-1354039466817\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.cz/#hl=cs&source=hp&q=
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\AIDA64Driver]
"ImagePath"="\??\d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"qgif4.dll"=multi:"2011-10-10T17:42\00gif\00\00"
"qico4.dll"=multi:"2011-10-10T17:42\00ico\00\00"
"qjpeg4.dll"=multi:"2011-10-10T17:42\00jpeg\00jpg\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QTextCodecFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"2011-10-10T17:42\00GB18030\00GBK\00GB2312\00CP936\00MS936\00windows-936\00MIB: 114\00MIB: 113\00MIB: 2025\00\00"
"qkrcodecs4.dll"=multi:"2011-10-10T17:42\00EUC-KR\00cp949\00MIB: 38\00MIB: -949\00\00"
"qtwcodecs4.dll"=multi:"2011-10-10T17:42\00Big5\00Big5-HKSCS\00Big5-ETen\00CP950\00MIB: 2026\00MIB: 2101\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpcodecs4.dll"=multi:"40602\000\00Windows msvc release full-config\002011-10-10T17:42\00\00"
"qjpcodecsd4.dll"=multi:"40703\001\00Windows msvc debug full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qkrcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qtwcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"Microsoft.VC80.CRT.manifest"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"msvcr80.dll"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"qgif4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qico4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpeg4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\windows\SysWOW64\PnkBstrA.exe
d:\program files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe
d:\program files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
d:\program files (x86)\ASUS\AI Suite II\AsRoutineController.exe
d:\program files (x86)\ASUS\APRP\aprp.exe
.
**************************************************************************
.
Celkový čas: 2014-02-18 19:57:15 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-02-18 18:57
ComboFix2.txt 2014-02-17 22:04
.
Před spuštěním: Volných bajtů: 45 374 296 064
Po spuštění: Volných bajtů: 45 127 602 176
.
- - End Of File - - F12E1FCC9546338D4CCF881907613164
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.16332.13762 [GMT 1:00]
Spuštěný z: d:\users\Milos\Desktop\ComboFix.exe
Použité ovládací přepínače :: d:\users\Milos\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-01-18 do 2014-02-18 )))))))))))))))))))))))))))))))
.
.
2459-05-10 23:51 . 2459-05-10 23:51 64624 ----a-w- c:\windows\system32\drivers\HECIx64.sys
2440-08-16 14:07 . 2440-08-16 14:07 1286400 ----a-w- c:\windows\system32\MaxxSpeechAPO64.dll
2439-07-29 07:23 . 2439-07-29 07:23 27644160 ----a-w- c:\windows\system32\MaxxAudioVnA64.dll
2439-07-29 07:23 . 2439-07-29 07:23 1021656 ----a-w- c:\windows\system32\RtkApi64.dll
2424-07-27 12:38 . 2424-07-27 12:38 912184 ----a-w- c:\windows\system32\NAHIMICAPOSettingsIPC.dll
2424-07-27 12:38 . 2424-07-27 12:38 41974272 ----a-w- c:\windows\system32\RCoRes64.dat
2424-07-27 12:38 . 2424-07-27 12:38 2588888 ----a-w- c:\windows\system32\RtkAPO64.dll
2424-07-27 12:38 . 2424-07-27 12:38 2036992 ----a-w- c:\windows\system32\MaxxAudioEQ64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1922304 ----a-w- c:\windows\system32\MaxxAudioRealtek264.dll
2424-07-27 12:38 . 2424-07-27 12:38 14153984 ----a-w- c:\windows\system32\MaxxAudioRealtek64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1345280 ----a-w- c:\windows\system32\MaxxAudioAPO5064.dll
2424-07-27 12:38 . 2424-07-27 12:38 1286872 ----a-w- c:\windows\system32\RTCOM64.dll
2424-07-27 12:38 . 2424-07-27 12:38 1013504 ----a-w- c:\windows\system32\MaxxAudioAPOShell64.dll
2423-07-09 05:54 . 2423-07-09 05:54 618200 ----a-w- c:\windows\system32\RtDataProc64.dll
2423-07-09 05:54 . 2423-07-09 05:54 5753112 ----a-w- c:\windows\system32\NAHIMICAPOlfx.dll
2423-07-09 05:54 . 2423-07-09 05:54 3899648 ----a-w- c:\windows\system32\MaxxAudioVnN64.dll
2423-07-09 05:54 . 2423-07-09 05:54 3760344 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2423-07-09 05:54 . 2423-07-09 05:54 2810072 ----a-w- c:\windows\system32\RtPgEx64.dll
2423-07-09 05:54 . 2423-07-09 05:54 2103040 ----a-w- c:\windows\system32\WavesGUILib64.dll
2423-07-09 05:54 . 2423-07-09 05:54 154840 ----a-w- c:\windows\system32\RCoInstII64.dll
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\Milos\AppData\Local\temp
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\Mcx1-MILOS-PC\AppData\Local\temp
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\Ivanka\AppData\Local\temp
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2014-02-18 18:54 . 2014-02-18 18:54 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-02-18 06:17 . 2014-02-03 19:53 965000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-02-18 06:17 . 2014-02-03 19:53 965000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{66AA59A6-4D10-4D38-BCC4-B63BAABF17F9}\gapaengine.dll
2014-02-18 06:17 . 2014-02-06 09:01 10536864 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7E27F04F-50C7-4B85-917A-B81EDCAFD38C}\mpengine.dll
2014-02-17 19:36 . 2013-12-03 18:28 10315576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-02-16 16:50 . 2014-02-16 17:07 -------- d-----w- C:\AdwCleaner
2014-02-16 15:55 . 2014-02-17 06:14 -------- d-----w- c:\program files\trend micro
2014-02-16 15:55 . 2014-02-16 15:55 -------- d-----w- C:\rsit
2014-02-16 15:01 . 2013-11-26 23:29 5693440 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-02-16 15:01 . 2013-11-26 22:49 6573056 ----a-w- c:\windows\system32\mstscax.dll
2014-02-16 14:31 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2014-02-16 14:31 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2014-02-13 06:11 . 2013-12-06 02:30 1882112 ----a-w- c:\windows\system32\msxml3.dll
2014-02-03 19:52 . 2014-02-03 19:52 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2014-02-03 19:46 . 2013-12-16 00:54 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22E4258C-0810-4F12-9CDA-11436A6512FD}\mpengine.dll
2014-02-03 18:01 . 2014-02-03 18:01 -------- d-----w- c:\windows\Migration
2014-02-02 17:21 . 2014-02-02 17:21 -------- d-----w- c:\programdata\ATI
2014-02-02 17:21 . 2014-02-02 17:21 -------- d-----w- c:\program files (x86)\AMD AVT
2014-01-31 21:07 . 2014-01-31 21:07 127872 ----a-w- c:\windows\system32\amdhcp64.dll
2014-01-31 21:07 . 2014-01-31 21:07 117560 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\atimpc64.dll
2014-01-31 21:07 . 2014-01-31 21:07 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2014-01-31 21:07 . 2014-01-31 21:07 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2014-01-31 21:07 . 2014-01-31 21:07 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2014-01-31 21:07 . 2014-01-31 21:07 116024 ----a-w- c:\windows\system32\atiu9p64.dll
2014-01-31 21:07 . 2014-01-31 21:07 8760320 ----a-w- c:\windows\SysWow64\atidxx32.dll
2014-01-31 21:06 . 2014-01-31 21:06 10899624 ----a-w- c:\windows\system32\atiumd6a.dll
2014-01-31 21:06 . 2014-01-31 21:06 7892000 ----a-w- c:\windows\system32\atiumd64.dll
2014-01-31 20:57 . 2014-01-31 20:57 13929472 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-01-31 20:43 . 2014-01-31 20:43 230912 ----a-w- c:\windows\system32\clinfo.exe
2014-01-31 20:43 . 2014-01-31 20:43 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2014-01-31 20:43 . 2014-01-31 20:43 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2014-01-31 20:43 . 2014-01-31 20:43 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2014-01-31 20:43 . 2014-01-31 20:43 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2014-01-31 20:42 . 2014-01-31 20:42 28424704 ----a-w- c:\windows\system32\amdocl64.dll
2014-01-31 20:40 . 2014-01-31 20:40 23903232 ----a-w- c:\windows\SysWow64\amdocl.dll
2014-01-31 20:38 . 2014-01-31 20:38 65024 ----a-w- c:\windows\system32\OpenCL.dll
2014-01-31 20:38 . 2014-01-31 20:38 58880 ----a-w- c:\windows\SysWow64\OpenCL.dll
2014-01-31 20:26 . 2014-01-31 20:26 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2014-01-31 20:26 . 2014-01-31 20:26 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2014-01-31 20:26 . 2014-01-31 20:26 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2014-01-31 20:26 . 2014-01-31 20:26 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2014-01-31 20:26 . 2014-01-31 20:26 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2014-01-31 20:26 . 2014-01-31 20:26 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2014-01-31 20:24 . 2014-01-31 20:24 126464 ----a-w- c:\windows\system32\mantle64.dll
2014-01-31 20:24 . 2014-01-31 20:24 113152 ----a-w- c:\windows\SysWow64\mantle32.dll
2014-01-31 20:23 . 2014-01-31 20:23 5350400 ----a-w- c:\windows\system32\amdmantle64.dll
2014-01-31 20:22 . 2014-01-31 20:22 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2014-01-31 20:22 . 2014-01-31 20:22 27152384 ----a-w- c:\windows\system32\atio6axx.dll
2014-01-31 20:10 . 2014-01-31 20:10 4286976 ----a-w- c:\windows\SysWow64\amdmantle32.dll
2014-01-31 20:06 . 2014-01-31 20:06 442368 ----a-w- c:\windows\system32\atidemgy.dll
2014-01-31 20:06 . 2014-01-31 20:06 31232 ----a-w- c:\windows\system32\atimuixx.dll
2014-01-31 20:06 . 2014-01-31 20:06 586240 ----a-w- c:\windows\system32\atieclxx.exe
2014-01-31 20:05 . 2014-01-31 20:05 240128 ----a-w- c:\windows\system32\atiesrxx.exe
2014-01-31 20:03 . 2014-01-31 20:03 190976 ----a-w- c:\windows\system32\atitmm64.dll
2014-01-31 20:03 . 2014-01-31 20:03 22834688 ----a-w- c:\windows\SysWow64\atioglxx.dll
2014-01-31 19:59 . 2014-01-31 19:59 81920 ----a-w- c:\windows\system32\mantleaxl64.dll
2014-01-31 19:59 . 2014-01-31 19:59 79360 ----a-w- c:\windows\SysWow64\mantleaxl32.dll
2014-01-31 19:48 . 2014-01-31 19:48 44544 ----a-w- c:\windows\system32\amdmmcl6.dll
2014-01-31 19:47 . 2014-01-31 19:47 35840 ----a-w- c:\windows\SysWow64\amdmmcl.dll
2014-01-31 19:37 . 2014-01-31 19:37 806912 ----a-w- c:\windows\system32\coinst_13.350.dll
2014-01-31 19:30 . 2014-01-31 19:30 1148416 ----a-w- c:\windows\system32\atiadlxx.dll
2014-01-31 19:30 . 2014-01-31 19:30 828416 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2014-01-31 19:29 . 2014-01-31 19:29 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2014-01-31 19:29 . 2014-01-31 19:29 146432 ----a-w- c:\windows\system32\atig6txx.dll
2014-01-31 19:29 . 2012-10-29 16:30 27159 ----a-w- c:\windows\TempFileCleaner.cmd
2014-01-31 19:29 . 2014-01-31 19:29 133120 ----a-w- c:\windows\SysWow64\atigktxx.dll
2014-01-31 19:28 . 2014-01-31 19:28 636928 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2014-01-31 19:26 . 2014-01-31 19:27 -------- d-----w- C:\MyBootCD
2014-01-31 19:25 . 2014-01-31 19:25 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-01-31 19:23 . 2014-01-31 19:23 95744 ----a-w- c:\windows\system32\amdave64.dll
2014-01-31 19:23 . 2014-01-31 19:23 90112 ----a-w- c:\windows\SysWow64\amdave32.dll
2014-01-31 19:23 . 2014-02-03 19:32 -------- d-----w- c:\programdata\Astroburn Lite
2014-01-31 19:23 . 2014-01-31 19:23 89088 ----a-w- c:\windows\system32\atisamu64.dll
2014-01-31 19:23 . 2014-01-31 19:23 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2014-01-31 19:19 . 2014-01-31 19:19 -------- d-----w- c:\users\Milos\AppData\Roaming\WinZip
2014-01-31 14:53 . 2014-01-31 14:53 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2014-01-31 14:49 . 2014-01-31 14:49 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2014-01-26 15:52 . 2005-03-11 23:07 87040 ----a-w- c:\windows\system32\pdfcmnnt.dll
2014-01-26 15:52 . 2004-03-08 23:00 662288 ----a-w- c:\windows\SysWow64\MSCOMCT2.OCX
2014-01-26 15:52 . 1998-07-05 23:00 23552 ----a-w- c:\windows\SysWow64\MSMPIDE.DLL
2014-01-26 15:52 . 1998-06-23 23:00 137000 ----a-w- c:\windows\SysWow64\MSMAPI32.OCX
2014-01-26 15:40 . 2014-02-13 19:20 -------- d-----w- c:\users\Milos\AppData\Local\WinZip
2014-01-26 15:40 . 2014-01-26 15:40 -------- d-----w- c:\programdata\WinZip
2014-01-26 15:40 . 2014-01-26 15:40 -------- d-----w- c:\program files\WinZip
2014-01-24 07:43 . 2013-12-18 20:09 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-24 07:36 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-01-24 07:36 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-24 07:36 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-01-24 07:36 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-01-24 07:36 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-01-24 07:36 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-01-24 07:36 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-01-24 07:36 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-01-24 07:36 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-01-24 06:19 . 2014-01-24 07:34 -------- d-----w- c:\users\Milos\AppData\Roaming\DropboxMaster
2014-01-22 21:07 . 2014-01-22 21:07 -------- d-----w- c:\program files (x86)\Common Files\PDF Architect
2014-01-22 20:42 . 2014-01-22 21:10 -------- d-----w- c:\users\Milos\AppData\Roaming\PDF Architect
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-17 20:37 . 2012-12-14 19:01 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-02-16 21:17 . 2012-12-14 19:01 214392 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2014-02-16 16:25 . 2013-01-05 20:43 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2014-02-16 14:33 . 2012-08-29 18:56 88567024 ----a-w- c:\windows\system32\MRT.exe
2014-02-05 20:23 . 2012-08-29 20:14 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-05 20:23 . 2012-08-29 20:14 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-01-31 21:07 . 2013-11-22 16:26 143304 ----a-w- c:\windows\system32\atiuxp64.dll
2014-01-31 21:07 . 2013-12-06 22:02 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2014-01-31 21:07 . 2013-11-22 16:26 1328328 ----a-w- c:\windows\system32\aticfx64.dll
2014-01-31 21:07 . 2013-11-22 16:26 1106360 ----a-w- c:\windows\SysWow64\aticfx32.dll
2014-01-31 21:07 . 2013-11-22 16:26 10171456 ----a-w- c:\windows\system32\atidxx64.dll
2014-01-31 21:07 . 2013-12-06 21:59 10145128 ----a-w- c:\windows\SysWow64\atiumdva.dll
2014-01-31 21:06 . 2013-12-06 21:58 6716264 ----a-w- c:\windows\SysWow64\atiumdag.dll
2014-01-16 08:59 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-01-14 20:48 . 2014-01-14 20:48 888536 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-01-14 20:48 . 2014-01-14 20:48 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-01-14 20:48 . 2012-08-29 21:46 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2014-01-14 20:48 . 2014-01-14 20:48 99800 ----a-w- c:\windows\system32\drivers\TeeDriverx64.sys
2014-01-14 20:48 . 2014-01-14 20:48 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
2013-12-28 19:24 . 2012-08-29 19:05 4684384 ----a-w- c:\windows\PE_Rom.dll
2013-12-23 14:38 . 2013-12-23 14:38 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-12-19 16:45 . 2013-12-19 16:45 94720 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2013-12-19 16:44 . 2013-12-19 16:44 110080 ----a-w- c:\windows\system32\DelayAPO.dll
2013-12-07 17:14 . 2013-12-07 17:14 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-12-05 19:36 . 2012-12-14 19:01 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-11-23 18:26 . 2013-12-12 19:21 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-12 19:21 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-11-22 16:09 . 2013-11-22 16:09 995342 ----a-w- c:\windows\SysWow64\amdocl_as32.exe
2013-11-22 16:09 . 2013-11-22 16:09 798734 ----a-w- c:\windows\SysWow64\amdocl_ld32.exe
2013-11-22 16:09 . 2013-11-22 16:09 1187342 ----a-w- c:\windows\system32\amdocl_as64.exe
2013-11-22 16:09 . 2013-11-22 16:09 1061902 ----a-w- c:\windows\system32\amdocl_ld64.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"="d:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2013-04-22 720064]
"GrooveMonitor"="d:\program files (x86)\Microsoft Office\Office14\GROOVEMN.EXE" [2013-03-06 945856]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2013-11-22 389120]
"DAEMON Tools Lite"="d:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2014-01-08 55360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-08-10 291648]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"Adobe Reader Speed Launcher"="d:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-12-18 40312]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"Tilt"="c:\program files (x86)\GIGABYTE\GHOST\Tilt.exe" [2011-04-20 729088]
"Nástroj WD Drive Unlocker"="c:\program files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe" [2012-06-13 1688008]
"WD Quick View"="c:\program files (x86)\Western Digital\WD Quick View\WDDMStatus.exe" [2013-08-14 5537136]
"ghost"="c:\program files (x86)\GIGABYTE\GHOST\ghostopen.exe" [2010-02-08 192000]
"PMBVolumeWatcher"="d:\program files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [2013-04-24 740888]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-01-31 767200]
.
c:\users\Milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Milos\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-1-24 33509888]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"CHotkey"=mHotkey.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64;d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [x]
R3 ASUSstpt;ASUS USB 3.0 Boost Storage Driver (Storage Driver);c:\windows\system32\DRIVERS\ASUSstpt.sys;c:\windows\SYSNATIVE\DRIVERS\ASUSstpt.sys [x]
R3 ASUSumsc;ASUS USB 3.0 Boost Storage Driver (WDM);c:\windows\system32\DRIVERS\ASUSumsc.sys;c:\windows\SYSNATIVE\DRIVERS\ASUSumsc.sys [x]
R3 BthAvrcp;Bluetooth AVRCP Profile;c:\windows\system32\DRIVERS\BthAvrcp.sys;c:\windows\SYSNATIVE\DRIVERS\BthAvrcp.sys [x]
R3 cpuz130;cpuz130;d:\temp\cpuz130\cpuz_x64.sys;d:\temp\cpuz130\cpuz_x64.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan620.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);c:\windows\system32\DRIVERS\RtVLAN620.sys;c:\windows\SYSNATIVE\DRIVERS\RtVLAN620.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [x]
S2 AsusFanControlService;AsusFanControlService;c:\program files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe;c:\program files (x86)\ASUS\AsusFanControlService\1.02.05\AsusFanControlService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;d:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe;d:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 TeamViewer9;TeamViewer 9;d:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;d:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [x]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [x]
S3 ASUSFILTER;ASUSFILTER;SysWow64\drivers\ASUSFILTER.sys;SysWow64\drivers\ASUSFILTER.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-04 06:32 1211720 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-02-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-29 20:23]
.
2014-02-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 17:47]
.
2014-02-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-09-02 17:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 164016 ----a-w- c:\users\Milos\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 190536]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2424-07-27 7205592]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 1266912]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
mSearch Bar = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - d:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Milos\AppData\Roaming\Mozilla\Firefox\Profiles\s1amq8tc.default-1354039466817\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.cz/#hl=cs&source=hp&q=
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\AIDA64Driver]
"ImagePath"="\??\d:\program files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QImageIOHandlerFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"qgif4.dll"=multi:"2011-10-10T17:42\00gif\00\00"
"qico4.dll"=multi:"2011-10-10T17:42\00ico\00\00"
"qjpeg4.dll"=multi:"2011-10-10T17:42\00jpeg\00jpg\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Factory Cache 4.7\com.trolltech.Qt.QTextCodecFactoryInterface:\e:\B*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"2011-10-10T17:42\00GB18030\00GBK\00GB2312\00CP936\00MS936\00windows-936\00MIB: 114\00MIB: 113\00MIB: 2025\00\00"
"qkrcodecs4.dll"=multi:"2011-10-10T17:42\00EUC-KR\00cp949\00MIB: 38\00MIB: -949\00\00"
"qtwcodecs4.dll"=multi:"2011-10-10T17:42\00Big5\00Big5-HKSCS\00Big5-ETen\00CP950\00MIB: 2026\00MIB: 2101\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\codecs]
"qcncodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpcodecs4.dll"=multi:"40602\000\00Windows msvc release full-config\002011-10-10T17:42\00\00"
"qjpcodecsd4.dll"=multi:"40703\001\00Windows msvc debug full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qkrcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qtwcodecs4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
[HKEY_USERS\S-1-5-21-1547765992-1640624829-2362379350-1000\Software\Trolltech\OrganizationDefaults\Qt Plugin Cache 4.7.false\e:\b*a*t*t*l*e*f*i*e*l*d* *3*"!\Core\imageformats]
"Microsoft.VC80.CRT.manifest"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"msvcr80.dll"=multi:"0\001\00unknown\002011-10-10T17:42\00\00"
"qgif4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qico4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
"qjpeg4.dll"=multi:"40703\000\00Windows msvc release full-config QT_NO_DRAGANDDROP\002011-10-10T17:42\00\00"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\windows\SysWOW64\PnkBstrA.exe
d:\program files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe
d:\program files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
d:\program files (x86)\ASUS\AI Suite II\AsRoutineController.exe
d:\program files (x86)\ASUS\APRP\aprp.exe
.
**************************************************************************
.
Celkový čas: 2014-02-18 19:57:15 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-02-18 18:57
ComboFix2.txt 2014-02-17 22:04
.
Před spuštěním: Volných bajtů: 45 374 296 064
Po spuštění: Volných bajtů: 45 127 602 176
.
- - End Of File - - F12E1FCC9546338D4CCF881907613164
-
Rudy
- Site Admin
- Příspěvky: 119534
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o pomoc s opožděným startem W7-64b a kontrolu
Bohužel 
Stále nabíhá Essential se zpožděním a služby viz výše také
Nepomohlo by například vstup přes TeamViewer 9?
Stále nabíhá Essential se zpožděním a služby viz výše také
Nepomohlo by například vstup přes TeamViewer 9?
Přispějete na provoz fóra?