Prosím o kontrolu, notebook je najaký spomalený a všetko mu trvá.
NB: CPU: i5 4200M RAM:8GB GPU: GT755M 2GB ( LENOVI IdeaPad Y510P)
Prikladám log:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-04-2014
Ran by miro (administrator) on NOTEBOOK on 23-04-2014 19:57:15
Running from C:\Users\miro\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: 041B
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Windows\SysWOW64\UMonit64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
() C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Google Inc.) C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13545032 2013-05-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1308232 2013-05-20] (Realtek Semiconductor)
HKLM\...\Run: [UMonit64] => C:\Windows\SysWOW64\UMonit64.exe [40960 2013-04-09] ()
HKLM\...\Run: [RtsFT] => C:\Windows\RTFTrack.exe [6346312 2013-03-15] (Realtek semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1179576 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2891592 2013-05-17] (ELAN Microelectronics Corp.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-11] (Intel Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2014-01-17] (Microsoft Corporation)
HKU\S-1-5-21-3741898180-3346804313-1312629632-1000\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [14066176 2014-01-15] ()
HKU\S-1-5-21-3741898180-3346804313-1312629632-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20924576 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-3741898180-3346804313-1312629632-1000\...\CurrentVersion\Windows: [Load] C:\Users\miro\LOCALS~1\Temp\msoavqm.bat <===== ATTENTION
HKU\S-1-5-21-3741898180-3346804313-1312629632-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3741898180-3346804313-1312629632-1000\...\MountPoints2: {cac25b40-7f90-11e3-85a6-806e6f6e6963} - F:\Setup.exe
HKU\S-1-5-21-3741898180-3346804313-1312629632-1000\...\MountPoints2: {d0461ae7-853d-11e3-8ff8-681729df2ae5} - G:\LGAutoRun.exe
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174296 2014-03-04] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [148016 2014-03-04] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1241F56D0612CF01
BHO: No Name - {11111111-1111-1111-1111-110311551110} - No File
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Shopper Pro - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro64.dll (Goobzo Ltd.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Shopper Pro - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro.dll (Goobzo Ltd.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: iWebar - C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com [2014-04-23]
FF Extension: Shopper-Pro - C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF} [2014-04-23]
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/", "hxxp://mystart.incredibar.com/mb201?a=6OyU37udsR&i=26", "hxxp://home.sweetim.com/?crg=3.1010000.10005&barid={61BAE0CC-410C-11E2-AACE-005056C00008}"
CHR Extension: (Dokumenty Google) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-15]
CHR Extension: (Disk Google) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-15]
CHR Extension: (YouTube) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-15]
CHR Extension: (Moja adresa IP) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccfphbgnmmhjfalloifioeeeokjemobf [2014-01-15]
CHR Extension: (Adblock Plus) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-01-15]
CHR Extension: (iWebar) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam [2014-04-23]
CHR Extension: (Hľadať v Google) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-15]
CHR Extension: (Kontrola pošty Google) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-01-15]
CHR Extension: (Peňaženka Google) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-15]
CHR Extension: (Gmail) - C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-15]
==================== Services (Whitelisted) =================
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-04-08] (LogMeIn, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-02-08] ()
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation)
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [1069248 2014-02-06] ()
R2 UsbService; C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe [334848 2010-08-10] ()
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3386608 2013-02-08] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [91368 2013-03-22] (GenesysLogic)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [128200 2013-04-26] (Qualcomm Atheros Co., Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation)
S3 PcaSp60; C:\Windows\SysWOW64\DRIVERS\PcaSp60.sys [38912 2010-09-07] (Printing Communications Assoc., Inc. (PCAUSA))
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [8243272 2013-03-15] (Realtek Semiconductor Corp.)
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2014-01-25] (Sony Ericsson Mobile Communications)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-01-17] (Duplex Secure Ltd.)
R3 vuhub; C:\Windows\System32\DRIVERS\vuhub.sys [47616 2007-12-17] ()
U3 army9a77; C:\Windows\System32\Drivers\army9a77.sys [0 ] (Advanced Micro Devices)
S2 SPDRIVER_1.35.1.155; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-23 19:57 - 2014-04-23 19:57 - 00014806 _____ () C:\Users\miro\Desktop\FRST.txt
2014-04-23 19:57 - 2014-04-23 19:57 - 00000000 ____D () C:\FRST
2014-04-23 19:57 - 2014-04-23 19:56 - 02061312 _____ (Farbar) C:\Users\miro\Desktop\FRST64.exe
2014-04-23 19:56 - 2014-04-23 19:56 - 02061312 _____ (Farbar) C:\Users\miro\Downloads\FRST64.exe
2014-04-23 19:56 - 2014-04-23 19:56 - 00029696 _____ () C:\Users\miro\AppData\Local\MSGBOX.EXE
2014-04-23 19:56 - 2014-04-23 19:56 - 00015327 _____ () C:\Users\miro\Desktop\LM.bat
2014-04-23 19:55 - 2014-04-23 19:55 - 00112640 _____ (forum.viry.cz) C:\Users\miro\Downloads\FRSTLauncher.exe
2014-04-23 19:55 - 2014-04-23 19:55 - 00112640 _____ (forum.viry.cz) C:\Users\miro\Desktop\FRSTLauncher.exe
2014-04-23 19:25 - 2014-04-23 19:47 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
2014-04-23 19:25 - 2014-04-23 19:47 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-04-23 19:25 - 2014-04-23 19:43 - 00003442 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-3.job
2014-04-23 19:25 - 2014-04-23 19:43 - 00002332 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-4.job
2014-04-23 19:25 - 2014-04-23 19:43 - 00001750 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-5.job
2014-04-23 19:25 - 2014-04-23 19:43 - 00001656 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-1.job
2014-04-23 19:25 - 2014-04-23 19:43 - 00001634 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-2.job
2014-04-23 19:25 - 2014-04-23 19:43 - 00000000 ____D () C:\Program Files (x86)\YouTube Accelerator
2014-04-23 19:25 - 2014-04-23 19:25 - 00006472 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-3
2014-04-23 19:25 - 2014-04-23 19:25 - 00005362 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-4
2014-04-23 19:25 - 2014-04-23 19:25 - 00004780 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-5
2014-04-23 19:25 - 2014-04-23 19:25 - 00004686 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-1
2014-04-23 19:25 - 2014-04-23 19:25 - 00004664 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-2
2014-04-23 19:25 - 2014-04-23 19:25 - 00004504 _____ () C:\Windows\System32\Tasks\ShopperPro
2014-04-23 19:25 - 2014-04-23 19:25 - 00004200 _____ () C:\Windows\System32\Tasks\Installer_sense
2014-04-23 19:25 - 2014-04-23 19:25 - 00003490 _____ () C:\Windows\System32\Tasks\SPDriver
2014-04-23 19:25 - 2014-04-23 19:25 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2014-04-23 19:25 - 2014-04-23 19:25 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO
2014-04-23 19:25 - 2014-04-23 19:25 - 00000000 ____D () C:\ProgramData\ShopperPro
2014-04-23 19:24 - 2014-04-23 19:24 - 00003566 _____ () C:\Windows\System32\Tasks\ShopperProJSUpd
2014-04-23 19:23 - 2014-04-23 19:23 - 00158168 _____ () C:\Users\miro\Downloads\CheatEngine63.exe
2014-04-23 19:23 - 2014-04-23 19:23 - 00000000 ____D () C:\Users\miro\AppData\Local\CrashRpt
2014-04-23 19:19 - 2014-04-23 19:25 - 79969936 _____ () C:\Users\miro\Downloads\relpona.part1.rar.crdownload
2014-04-23 18:56 - 2014-04-23 18:56 - 00000000 ____D () C:\Users\miro\Desktop\PlagueInc
2014-04-23 18:41 - 2014-04-23 18:58 - 1025269982 _____ () C:\Users\miro\Downloads\relpona.part2.rar
2014-04-23 18:39 - 2014-04-23 18:46 - 137418929 _____ () C:\Users\miro\Downloads\3DMGAME-Plague.Inc.Evolved.v0.6.1c.Cracked-3DM.7z
2014-04-22 21:47 - 2014-04-22 22:47 - 1063204864 _____ () C:\Users\miro\Downloads\Road-Trip-cz-dab.mpg
2014-04-22 15:25 - 2014-04-22 15:25 - 00000000 ____D () C:\Users\miro\Documents\FLiNGTrainer
2014-04-22 15:25 - 2012-11-14 11:35 - 01167360 _____ (3DMGAME) C:\Users\miro\Desktop\Call of Duty_Black Ops 2 v1.0 Plus 9 Trainer.exe
2014-04-22 15:24 - 2014-04-22 15:24 - 00588878 _____ () C:\Users\miro\Downloads\call-of-duty-black-ops-2-v1.0-trainer-plus9.zip
2014-04-21 17:41 - 2014-04-21 17:42 - 00000000 ____D () C:\Users\miro\Desktop\thrones
2014-04-21 15:06 - 2014-04-21 15:06 - 00014604 _____ () C:\Users\miro\Downloads\Call-of-duty-Modern-Warfare-4-Level-Hack-na-55-LVL.rar
2014-04-21 14:11 - 2014-04-23 19:53 - 00000000 ____D () C:\Users\miro\AppData\Local\LogMeIn Hamachi
2014-04-21 14:11 - 2014-04-21 14:11 - 00000000 ____D () C:\Users\miro\AppData\Local\LogMeIn
2014-04-21 14:11 - 2014-04-21 14:11 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-04-21 14:11 - 2014-04-21 14:11 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-04-21 14:11 - 2009-03-18 18:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2014-04-21 14:10 - 2014-04-21 14:11 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-04-21 14:09 - 2014-04-21 14:09 - 05877760 _____ () C:\Users\miro\Downloads\hamachi-2-2-0-105.msi
2014-04-20 09:28 - 2014-04-20 09:28 - 00002177 _____ () C:\Users\Public\Desktop\Call of Duty Black Ops II.lnk
2014-04-20 09:28 - 2014-04-20 09:28 - 00002177 _____ () C:\Users\Public\Desktop\Call of Duty Black Ops II Zombie Mode.lnk
2014-04-19 21:00 - 2014-04-19 21:00 - 00000000 ____D () C:\Users\miro\AppData\Local\SKIDROW
2014-04-19 20:41 - 2014-04-20 18:09 - 00000000 ____D () C:\Users\miro\Downloads\Call Of Duty - Black OPS 2 (2012)
2014-04-19 13:39 - 2014-04-19 13:40 - 03367638 _____ () C:\Users\miro\Downloads\NanoStation2-v4.0.3.build5058.bin
2014-04-18 18:14 - 2014-04-18 18:14 - 00001478 _____ () C:\Users\miro\Desktop\iw5sp - odkaz.lnk
2014-04-18 17:14 - 2014-04-18 17:15 - 00000000 ____D () C:\Users\miro\Documents\Arma 3
2014-04-18 17:14 - 2014-04-18 17:15 - 00000000 ____D () C:\Users\miro\AppData\Local\Arma 3
2014-04-18 17:14 - 2014-04-18 17:14 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-04-18 13:31 - 2014-04-18 13:31 - 00000764 _____ () C:\Users\Public\Desktop\Arma 3.lnk
2014-04-18 13:14 - 2014-04-18 13:31 - 00000000 ____D () C:\Program Files (x86)\Arma 3
2014-04-17 22:53 - 2014-04-17 22:53 - 03391231 _____ () C:\Users\miro\Downloads\NanoStation5-v4.0.3.build5058.bin
2014-04-17 22:04 - 2014-04-17 22:04 - 00000124 _____ () C:\Users\miro\Desktop\hesla wifi.txt
2014-04-17 11:38 - 2014-04-17 11:38 - 00000000 ____D () C:\Users\miro\Documents\Thief
2014-04-17 11:07 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-04-17 11:07 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-04-17 11:07 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-04-17 11:06 - 2014-04-17 11:06 - 00000958 _____ () C:\Users\Public\Desktop\Thief x64.lnk
2014-04-17 10:45 - 2014-04-17 10:45 - 00000000 ____D () C:\Hry
2014-04-17 08:47 - 2014-04-17 08:52 - 00001011 _____ () C:\Users\Public\Desktop\ProfiCAD.lnk
2014-04-17 08:45 - 2014-04-22 17:12 - 00000000 ____D () C:\Users\miro\AppData\Roaming\ProfiCAD
2014-04-17 08:45 - 2014-04-17 08:53 - 00000000 ____D () C:\Program Files (x86)\ProfiCAD
2014-04-17 08:45 - 2014-04-17 08:52 - 00000000 ____D () C:\Users\Public\Documents\ProfiCAD Library
2014-04-17 08:45 - 2014-04-17 08:50 - 00000000 ____D () C:\Users\Public\Documents\ProfiCAD Samples
2014-04-17 08:44 - 2013-09-24 18:31 - 00000000 ____D () C:\Users\miro\Desktop\Proficad 7.5.6 CZ
2014-04-17 08:29 - 2014-04-17 08:29 - 00000000 ____D () C:\Program Files (x86)\Borland
2014-04-17 08:29 - 1999-11-12 04:11 - 00183808 _____ () C:\Windows\SysWOW64\bdeadmin.cpl
2014-04-17 08:28 - 2006-12-13 18:14 - 00065024 _____ (Aladdin Knowledge Systems Ltd.) C:\Windows\system32\Drivers\aksdf.sys
2014-04-17 08:28 - 2006-12-04 10:44 - 00314368 _____ (Aladdin Knowledge Systems Ltd.) C:\Windows\system32\Drivers\hardlock.sys
2014-04-17 08:28 - 2006-10-18 19:12 - 00191488 _____ (Aladdin Knowledge Systems Ltd.) C:\Windows\SysWOW64\hlvdd.dll
2014-04-17 08:27 - 2014-04-17 08:27 - 00000000 ____D () C:\Program Files (x86)\aucotec
2014-04-17 08:23 - 2014-04-17 08:23 - 00000000 ____D () C:\Program Files (x86)\MSSOAP
2014-04-17 08:22 - 2014-04-17 08:22 - 00003034 _____ () C:\Windows\System32\Tasks\{EC047D6E-B1FD-45A5-9268-8BE73FDE1ED4}
2014-04-17 08:22 - 2008-11-15 08:50 - 00209608 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Tabctl32.ocx
2014-04-17 07:58 - 2014-04-17 07:58 - 00000113 _____ () C:\Users\miro\SoftwareV.txt
2014-04-17 07:57 - 2014-04-17 07:57 - 00001909 _____ () C:\Users\miro\Desktop\Prozik.lnk
2014-04-17 07:57 - 2014-04-17 07:57 - 00000000 ____D () C:\Users\miro\Prozik
2014-04-17 07:52 - 2014-04-17 07:52 - 00000113 _____ () C:\Users\miro\SoftwareK.txt
2014-04-17 07:51 - 2014-04-17 08:41 - 00000000 ____D () C:\Users\miro\SICHR14
2014-04-17 07:46 - 2014-04-17 07:46 - 00002006 _____ () C:\Users\miro\Desktop\Sichr.lnk
2014-04-17 07:45 - 2014-04-17 07:57 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OEZ
2014-04-17 07:45 - 2014-04-17 07:57 - 00000000 ____D () C:\Program Files (x86)\OEZ
2014-04-17 07:45 - 2014-04-17 07:45 - 00001114 _____ () C:\Users\miro\Desktop\Konfigurator OEZ.lnk
2014-04-16 19:06 - 2014-04-16 19:06 - 00001111 _____ () C:\Users\Public\Desktop\FastShare.lnk
2014-04-15 19:15 - 2014-04-15 19:15 - 00000812 _____ () C:\Users\miro\Desktop\µTorrent.lnk
2014-04-15 19:15 - 2014-04-15 19:15 - 00000792 _____ () C:\Users\miro\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-04-15 19:14 - 2014-04-23 19:52 - 00000000 ____D () C:\Users\miro\AppData\Roaming\uTorrent
2014-04-15 12:06 - 2010-09-07 14:27 - 00038912 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\system32\Drivers\PcaSp60.sys
2014-04-15 12:05 - 2014-04-15 12:05 - 00000000 ____D () C:\Users\miro\AppData\Roaming\InstallShield
2014-04-15 12:05 - 2010-09-07 14:27 - 00038912 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\Drivers\PcaSp60.sys
2014-04-15 12:05 - 2006-11-28 21:46 - 00052800 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\Drivers\PCASp50.sys
2014-04-15 12:05 - 2006-11-28 21:46 - 00041280 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\Drivers\PCASp50a64.sys
2014-04-15 12:05 - 2003-04-21 21:46 - 00061440 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\ASIW32N50.dll
2014-04-15 12:05 - 2002-09-10 19:35 - 00016302 _____ (Printing Communications Assoc., Inc. (PCAUSA)) C:\Windows\SysWOW64\ASINDIS5.sys
2014-04-15 12:05 - 2001-04-16 05:48 - 00015577 _____ () C:\Windows\SysWOW64\ASINDIS3.vxd
2014-04-14 14:51 - 2014-03-06 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-14 14:51 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-14 14:51 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-14 14:51 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-14 14:51 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-14 14:51 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-14 14:50 - 2014-03-06 12:21 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-14 14:50 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-14 14:50 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-14 14:50 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-14 14:50 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-14 14:50 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-14 14:50 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-14 14:50 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-14 14:50 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-14 14:50 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-14 14:50 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-14 14:50 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-14 14:50 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-14 14:50 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-14 14:50 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-14 14:50 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-14 14:50 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-14 14:50 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-14 14:50 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-14 14:50 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-14 14:50 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-14 14:50 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-14 14:50 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-14 14:50 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-14 14:50 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-14 14:50 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-14 14:50 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-14 14:50 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-14 14:50 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-14 14:50 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-14 14:50 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-14 14:50 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-14 14:50 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-14 14:50 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-14 14:50 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-14 14:50 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-14 14:50 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-14 14:50 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-14 14:50 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-14 14:50 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-14 14:50 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-14 14:50 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-10 19:11 - 2014-04-10 19:11 - 00001462 _____ () C:\Users\miro\Desktop\Call_of_Duty_4_Modern_Warfare_Trainer - odkaz.lnk
2014-04-10 12:46 - 2014-04-10 12:46 - 00005120 _____ () C:\Windows\SysWOW64\BReWErS.dll
2014-04-10 12:41 - 2014-04-10 12:41 - 00002014 _____ () C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Singleplayer.lnk
2014-04-10 12:41 - 2014-04-10 12:41 - 00000331 _____ () C:\Windows\game.ini
2014-04-10 05:24 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-10 05:24 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-10 05:24 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-10 05:24 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-10 05:24 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-10 05:19 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-10 05:19 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-10 05:19 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-10 05:19 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-10 05:19 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-10 05:19 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-10 05:19 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-10 05:19 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-10 05:19 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-10 05:19 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-10 05:19 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-10 05:19 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-09 21:03 - 2014-04-09 21:03 - 00001384 _____ () C:\Users\Public\Desktop\FORM studio.lnk
2014-04-09 21:03 - 2014-04-09 21:03 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Kastner software
2014-04-09 21:02 - 2014-04-09 21:02 - 00000000 ____D () C:\ProgramData\KASTNER software
2014-04-09 21:02 - 2014-04-09 21:02 - 00000000 ____D () C:\Program Files (x86)\KASTNER software
2014-04-08 17:58 - 2014-04-08 17:58 - 00001076 _____ () C:\Users\Public\Desktop\Counter-Strike 1.6.lnk
2014-04-08 17:58 - 2014-04-08 17:58 - 00001047 _____ () C:\Users\Public\Desktop\Half-Life.lnk
2014-04-08 14:56 - 2014-04-08 14:56 - 00000000 ____D () C:\Users\miro\Documents\My Cheat Tables
2014-04-08 14:53 - 2014-04-08 17:58 - 00002044 _____ () C:\Users\Public\Desktop\Sniper Elite.lnk
2014-04-08 14:51 - 2014-04-08 14:51 - 00000000 ____D () C:\Program Files (x86)\MC2
2014-04-08 14:31 - 2014-04-08 14:31 - 00000000 ____D () C:\Users\miro\AppData\Local\Activision
2014-04-08 12:42 - 2014-04-08 12:42 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Milestone
2014-04-08 12:42 - 2014-04-08 12:42 - 00000000 ____D () C:\ProgramData\Steam
2014-04-07 23:02 - 2014-04-07 23:03 - 00000000 ____D () C:\Program Files (x86)\MXGP
2014-04-07 23:02 - 2014-04-07 23:02 - 00001817 _____ () C:\Users\Public\Desktop\MXGP.lnk
2014-04-02 13:51 - 2014-04-02 13:51 - 00002071 _____ () C:\Users\miro\Desktop\Call of Duty Modern Warfare 2 SP 1.0 + 7 Trainer - odkaz.lnk
2014-04-01 09:39 - 2014-04-01 09:40 - 00000000 ____D () C:\Users\miro\Documents\RushForGlory
2014-04-01 09:38 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-04-01 09:38 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-04-01 09:38 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-04-01 09:38 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-04-01 09:37 - 2014-04-01 09:37 - 00000000 ____D () C:\Program Files (x86)\Immanitas Entertainment GmbH
2014-03-31 14:08 - 2014-03-31 14:08 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-31 14:08 - 2014-03-31 14:08 - 00000000 ____D () C:\Windows\system32\NV
2014-03-31 14:08 - 2014-03-31 14:08 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-03-31 14:05 - 2014-03-04 16:35 - 31474976 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 25255256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 23716640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 18302384 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 17755424 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 15783992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 14709720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 12708128 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-03-31 14:05 - 2014-03-04 16:35 - 11636176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 11589272 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 09728064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 09690424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 03143456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 02958792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 02783008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 02715264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 02411976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 01885472 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433523.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 01516488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433523.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00863064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00846168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00832936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00484296 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00409544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00377688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00353504 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00333600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-03-31 14:05 - 2014-03-04 16:35 - 00033736 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-03-31 13:58 - 2014-03-31 13:58 - 00000000 ____D () C:\NVIDIA
2014-03-31 12:24 - 2014-03-31 12:24 - 00000000 ____D () C:\Users\miro\AppData\Local\Intel_Corporation
2014-03-31 12:17 - 2014-03-31 12:17 - 00000000 ____D () C:\ProgramData\Age of Empires II HD - Slovencina
2014-03-30 20:10 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-03-30 20:10 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-03-30 20:10 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-03-30 20:10 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-03-30 20:10 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-03-30 20:10 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-03-30 20:10 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-03-30 20:10 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-03-30 20:10 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-03-30 20:10 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-03-30 20:10 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-03-30 20:10 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-03-30 20:10 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-03-30 20:10 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-03-30 20:10 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-03-30 20:10 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-03-30 20:10 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-03-30 20:10 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-03-30 20:10 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-03-30 20:10 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-03-30 20:09 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-03-30 20:09 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-03-30 20:09 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-03-30 20:09 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-03-30 20:09 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-03-30 20:09 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-03-30 20:09 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-03-30 20:09 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-03-30 20:09 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-03-30 20:09 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-03-30 20:09 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-03-30 20:09 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-03-30 20:09 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-03-30 20:09 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-03-30 20:09 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-03-30 20:09 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-03-30 20:09 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-03-30 20:09 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-03-30 20:09 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-03-30 20:09 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-03-30 20:09 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-03-30 20:09 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-03-30 20:09 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-03-30 20:09 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-03-30 20:09 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-03-30 20:09 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-03-30 20:09 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-03-30 20:09 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-03-30 20:03 - 2014-03-30 20:03 - 00001193 _____ () C:\Users\miro\Desktop\Call of Duty Modern Warfare 2 SP.lnk
2014-03-30 19:40 - 2014-04-20 09:20 - 00000000 ____D () C:\Program Files (x86)\Activision
2014-03-27 20:11 - 2014-03-27 20:11 - 00000000 ____D () C:\Users\miro\Documents\GTA San Andreas User Files
2014-03-27 20:04 - 2014-03-27 20:04 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-03-27 19:33 - 2014-03-27 19:42 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Ulozto File Manager
2014-03-27 19:33 - 2014-03-27 19:33 - 00000000 ____D () C:\Users\miro\Documents\Ulozto
2014-03-27 19:33 - 2014-03-27 19:33 - 00000000 ____D () C:\Program Files (x86)\Ulozto File Manager
2014-03-27 18:43 - 2014-03-27 18:43 - 00000000 ____D () C:\Users\miro\AppData\Local\cache
2014-03-27 18:35 - 2014-03-27 18:35 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2014-03-26 23:39 - 2014-03-26 23:45 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-03-26 23:34 - 2014-03-26 23:34 - 00000000 ____D () C:\ProgramData\FARO
2014-03-26 23:31 - 2014-03-26 23:31 - 00000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-03-26 23:31 - 2014-03-26 23:31 - 00000000 ____D () C:\Users\miro\Documents\Inventor Server SDK ACAD 2014
2014-03-26 23:30 - 2014-03-26 23:39 - 00000000 ____D () C:\Users\miro\AppData\Local\Autodesk
2014-03-26 23:30 - 2014-03-26 23:30 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-03-26 23:29 - 2014-03-27 18:57 - 00000000 ____D () C:\Program Files\Autodesk
2014-03-26 23:28 - 2010-06-02 05:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-03-26 23:28 - 2010-06-02 05:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-03-26 23:28 - 2010-06-02 05:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-03-26 23:28 - 2010-05-26 12:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-03-26 23:28 - 2010-05-26 12:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-03-26 23:19 - 2014-03-27 18:57 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Autodesk
2014-03-26 23:19 - 2014-03-27 18:57 - 00000000 ____D () C:\ProgramData\Autodesk
2014-03-26 23:17 - 2014-03-26 23:17 - 00000000 ____D () C:\Autodesk
==================== One Month Modified Files and Folders =======
2014-04-23 19:57 - 2014-04-23 19:57 - 00014806 _____ () C:\Users\miro\Desktop\FRST.txt
2014-04-23 19:57 - 2014-04-23 19:57 - 00000000 ____D () C:\FRST
2014-04-23 19:56 - 2014-04-23 19:57 - 02061312 _____ (Farbar) C:\Users\miro\Desktop\FRST64.exe
2014-04-23 19:56 - 2014-04-23 19:56 - 02061312 _____ (Farbar) C:\Users\miro\Downloads\FRST64.exe
2014-04-23 19:56 - 2014-04-23 19:56 - 00029696 _____ () C:\Users\miro\AppData\Local\MSGBOX.EXE
2014-04-23 19:56 - 2014-04-23 19:56 - 00015327 _____ () C:\Users\miro\Desktop\LM.bat
2014-04-23 19:56 - 2014-01-15 17:18 - 01767858 _____ () C:\Windows\WindowsUpdate.log
2014-04-23 19:55 - 2014-04-23 19:55 - 00112640 _____ (forum.viry.cz) C:\Users\miro\Downloads\FRSTLauncher.exe
2014-04-23 19:55 - 2014-04-23 19:55 - 00112640 _____ (forum.viry.cz) C:\Users\miro\Desktop\FRSTLauncher.exe
2014-04-23 19:53 - 2014-04-21 14:11 - 00000000 ____D () C:\Users\miro\AppData\Local\LogMeIn Hamachi
2014-04-23 19:52 - 2014-04-15 19:14 - 00000000 ____D () C:\Users\miro\AppData\Roaming\uTorrent
2014-04-23 19:52 - 2014-03-20 13:22 - 00000000 ____D () C:\Users\miro\AppData\Roaming\AIMP3
2014-04-23 19:52 - 2014-03-19 13:07 - 00000000 ____D () C:\Users\miro\AppData\Roaming\FileZilla
2014-04-23 19:52 - 2014-01-15 20:46 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Skype
2014-04-23 19:50 - 2009-07-14 07:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-23 19:49 - 2009-07-14 06:45 - 00015504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-23 19:49 - 2009-07-14 06:45 - 00015504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-23 19:47 - 2014-04-23 19:25 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
2014-04-23 19:47 - 2014-04-23 19:25 - 00000000 ____D () C:\Program Files (x86)\SmartTweak
2014-04-23 19:43 - 2014-04-23 19:25 - 00003442 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-3.job
2014-04-23 19:43 - 2014-04-23 19:25 - 00002332 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-4.job
2014-04-23 19:43 - 2014-04-23 19:25 - 00001750 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-5.job
2014-04-23 19:43 - 2014-04-23 19:25 - 00001656 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-1.job
2014-04-23 19:43 - 2014-04-23 19:25 - 00001634 _____ () C:\Windows\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-2.job
2014-04-23 19:43 - 2014-04-23 19:25 - 00000000 ____D () C:\Program Files (x86)\YouTube Accelerator
2014-04-23 19:43 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-23 19:42 - 2014-01-17 20:34 - 00002260 _____ () C:\Users\miro\Documents\ax_files.xml
2014-04-23 19:25 - 2014-04-23 19:25 - 00006472 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-3
2014-04-23 19:25 - 2014-04-23 19:25 - 00005362 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-4
2014-04-23 19:25 - 2014-04-23 19:25 - 00004780 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-5
2014-04-23 19:25 - 2014-04-23 19:25 - 00004686 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-1
2014-04-23 19:25 - 2014-04-23 19:25 - 00004664 _____ () C:\Windows\System32\Tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-2
2014-04-23 19:25 - 2014-04-23 19:25 - 00004504 _____ () C:\Windows\System32\Tasks\ShopperPro
2014-04-23 19:25 - 2014-04-23 19:25 - 00004200 _____ () C:\Windows\System32\Tasks\Installer_sense
2014-04-23 19:25 - 2014-04-23 19:25 - 00003490 _____ () C:\Windows\System32\Tasks\SPDriver
2014-04-23 19:25 - 2014-04-23 19:25 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2014-04-23 19:25 - 2014-04-23 19:25 - 00000000 ____D () C:\Users\Public\Documents\GOOBZO
2014-04-23 19:25 - 2014-04-23 19:25 - 00000000 ____D () C:\ProgramData\ShopperPro
2014-04-23 19:25 - 2014-04-23 19:19 - 79969936 _____ () C:\Users\miro\Downloads\relpona.part1.rar.crdownload
2014-04-23 19:24 - 2014-04-23 19:24 - 00003566 _____ () C:\Windows\System32\Tasks\ShopperProJSUpd
2014-04-23 19:23 - 2014-04-23 19:23 - 00158168 _____ () C:\Users\miro\Downloads\CheatEngine63.exe
2014-04-23 19:23 - 2014-04-23 19:23 - 00000000 ____D () C:\Users\miro\AppData\Local\CrashRpt
2014-04-23 19:19 - 2014-01-21 23:22 - 00000000 ____D () C:\Program Files (x86)\FastShare
2014-04-23 18:58 - 2014-04-23 18:41 - 1025269982 _____ () C:\Users\miro\Downloads\relpona.part2.rar
2014-04-23 18:56 - 2014-04-23 18:56 - 00000000 ____D () C:\Users\miro\Desktop\PlagueInc
2014-04-23 18:46 - 2014-04-23 18:39 - 137418929 _____ () C:\Users\miro\Downloads\3DMGAME-Plague.Inc.Evolved.v0.6.1c.Cracked-3DM.7z
2014-04-22 22:47 - 2014-04-22 21:47 - 1063204864 _____ () C:\Users\miro\Downloads\Road-Trip-cz-dab.mpg
2014-04-22 17:12 - 2014-04-17 08:45 - 00000000 ____D () C:\Users\miro\AppData\Roaming\ProfiCAD
2014-04-22 15:25 - 2014-04-22 15:25 - 00000000 ____D () C:\Users\miro\Documents\FLiNGTrainer
2014-04-22 15:24 - 2014-04-22 15:24 - 00588878 _____ () C:\Users\miro\Downloads\call-of-duty-black-ops-2-v1.0-trainer-plus9.zip
2014-04-21 18:06 - 2014-01-27 21:06 - 00000000 ____D () C:\Users\miro\AppData\Roaming\vlc
2014-04-21 17:42 - 2014-04-21 17:41 - 00000000 ____D () C:\Users\miro\Desktop\thrones
2014-04-21 15:06 - 2014-04-21 15:06 - 00014604 _____ () C:\Users\miro\Downloads\Call-of-duty-Modern-Warfare-4-Level-Hack-na-55-LVL.rar
2014-04-21 14:11 - 2014-04-21 14:11 - 00000000 ____D () C:\Users\miro\AppData\Local\LogMeIn
2014-04-21 14:11 - 2014-04-21 14:11 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-04-21 14:11 - 2014-04-21 14:11 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-04-21 14:11 - 2014-04-21 14:10 - 00000926 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-04-21 14:09 - 2014-04-21 14:09 - 05877760 _____ () C:\Users\miro\Downloads\hamachi-2-2-0-105.msi
2014-04-20 18:09 - 2014-04-19 20:41 - 00000000 ____D () C:\Users\miro\Downloads\Call Of Duty - Black OPS 2 (2012)
2014-04-20 09:28 - 2014-04-20 09:28 - 00002177 _____ () C:\Users\Public\Desktop\Call of Duty Black Ops II.lnk
2014-04-20 09:28 - 2014-04-20 09:28 - 00002177 _____ () C:\Users\Public\Desktop\Call of Duty Black Ops II Zombie Mode.lnk
2014-04-20 09:20 - 2014-03-30 19:40 - 00000000 ____D () C:\Program Files (x86)\Activision
2014-04-19 21:00 - 2014-04-19 21:00 - 00000000 ____D () C:\Users\miro\AppData\Local\SKIDROW
2014-04-19 13:40 - 2014-04-19 13:39 - 03367638 _____ () C:\Users\miro\Downloads\NanoStation2-v4.0.3.build5058.bin
2014-04-18 18:14 - 2014-04-18 18:14 - 00001478 _____ () C:\Users\miro\Desktop\iw5sp - odkaz.lnk
2014-04-18 17:15 - 2014-04-18 17:14 - 00000000 ____D () C:\Users\miro\Documents\Arma 3
2014-04-18 17:15 - 2014-04-18 17:14 - 00000000 ____D () C:\Users\miro\AppData\Local\Arma 3
2014-04-18 17:14 - 2014-04-18 17:14 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2014-04-18 13:31 - 2014-04-18 13:31 - 00000764 _____ () C:\Users\Public\Desktop\Arma 3.lnk
2014-04-18 13:31 - 2014-04-18 13:14 - 00000000 ____D () C:\Program Files (x86)\Arma 3
2014-04-17 22:53 - 2014-04-17 22:53 - 03391231 _____ () C:\Users\miro\Downloads\NanoStation5-v4.0.3.build5058.bin
2014-04-17 22:04 - 2014-04-17 22:04 - 00000124 _____ () C:\Users\miro\Desktop\hesla wifi.txt
2014-04-17 11:38 - 2014-04-17 11:38 - 00000000 ____D () C:\Users\miro\Documents\Thief
2014-04-17 11:06 - 2014-04-17 11:06 - 00000958 _____ () C:\Users\Public\Desktop\Thief x64.lnk
2014-04-17 10:45 - 2014-04-17 10:45 - 00000000 ____D () C:\Hry
2014-04-17 08:53 - 2014-04-17 08:45 - 00000000 ____D () C:\Program Files (x86)\ProfiCAD
2014-04-17 08:52 - 2014-04-17 08:47 - 00001011 _____ () C:\Users\Public\Desktop\ProfiCAD.lnk
2014-04-17 08:52 - 2014-04-17 08:45 - 00000000 ____D () C:\Users\Public\Documents\ProfiCAD Library
2014-04-17 08:50 - 2014-04-17 08:45 - 00000000 ____D () C:\Users\Public\Documents\ProfiCAD Samples
2014-04-17 08:41 - 2014-04-17 07:51 - 00000000 ____D () C:\Users\miro\SICHR14
2014-04-17 08:34 - 2014-01-15 17:18 - 00000000 ____D () C:\Users\miro
2014-04-17 08:33 - 2009-07-14 04:34 - 00000416 _____ () C:\Windows\win.ini
2014-04-17 08:29 - 2014-04-17 08:29 - 00000000 ____D () C:\Program Files (x86)\Borland
2014-04-17 08:29 - 2014-01-15 17:27 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-17 08:28 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-04-17 08:27 - 2014-04-17 08:27 - 00000000 ____D () C:\Program Files (x86)\aucotec
2014-04-17 08:23 - 2014-04-17 08:23 - 00000000 ____D () C:\Program Files (x86)\MSSOAP
2014-04-17 08:22 - 2014-04-17 08:22 - 00003034 _____ () C:\Windows\System32\Tasks\{EC047D6E-B1FD-45A5-9268-8BE73FDE1ED4}
2014-04-17 07:58 - 2014-04-17 07:58 - 00000113 _____ () C:\Users\miro\SoftwareV.txt
2014-04-17 07:57 - 2014-04-17 07:57 - 00001909 _____ () C:\Users\miro\Desktop\Prozik.lnk
2014-04-17 07:57 - 2014-04-17 07:57 - 00000000 ____D () C:\Users\miro\Prozik
2014-04-17 07:57 - 2014-04-17 07:45 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OEZ
2014-04-17 07:57 - 2014-04-17 07:45 - 00000000 ____D () C:\Program Files (x86)\OEZ
2014-04-17 07:52 - 2014-04-17 07:52 - 00000113 _____ () C:\Users\miro\SoftwareK.txt
2014-04-17 07:46 - 2014-04-17 07:46 - 00002006 _____ () C:\Users\miro\Desktop\Sichr.lnk
2014-04-17 07:45 - 2014-04-17 07:45 - 00001114 _____ () C:\Users\miro\Desktop\Konfigurator OEZ.lnk
2014-04-16 19:06 - 2014-04-16 19:06 - 00001111 _____ () C:\Users\Public\Desktop\FastShare.lnk
2014-04-15 19:15 - 2014-04-15 19:15 - 00000812 _____ () C:\Users\miro\Desktop\µTorrent.lnk
2014-04-15 19:15 - 2014-04-15 19:15 - 00000792 _____ () C:\Users\miro\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-04-15 19:15 - 2014-03-20 13:37 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-15 12:05 - 2014-04-15 12:05 - 00000000 ____D () C:\Users\miro\AppData\Roaming\InstallShield
2014-04-15 12:05 - 2014-01-22 16:41 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-04-14 22:25 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-14 15:01 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-04-14 15:01 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-04-14 15:01 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-14 14:49 - 2014-02-07 22:07 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-11 03:03 - 2014-01-15 19:08 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 03:02 - 2014-01-15 19:08 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-10 19:11 - 2014-04-10 19:11 - 00001462 _____ () C:\Users\miro\Desktop\Call_of_Duty_4_Modern_Warfare_Trainer - odkaz.lnk
2014-04-10 12:46 - 2014-04-10 12:46 - 00005120 _____ () C:\Windows\SysWOW64\BReWErS.dll
2014-04-10 12:41 - 2014-04-10 12:41 - 00002014 _____ () C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Singleplayer.lnk
2014-04-10 12:41 - 2014-04-10 12:41 - 00000331 _____ () C:\Windows\game.ini
2014-04-09 21:03 - 2014-04-09 21:03 - 00001384 _____ () C:\Users\Public\Desktop\FORM studio.lnk
2014-04-09 21:03 - 2014-04-09 21:03 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Kastner software
2014-04-09 21:02 - 2014-04-09 21:02 - 00000000 ____D () C:\ProgramData\KASTNER software
2014-04-09 21:02 - 2014-04-09 21:02 - 00000000 ____D () C:\Program Files (x86)\KASTNER software
2014-04-08 17:58 - 2014-04-08 17:58 - 00001076 _____ () C:\Users\Public\Desktop\Counter-Strike 1.6.lnk
2014-04-08 17:58 - 2014-04-08 17:58 - 00001047 _____ () C:\Users\Public\Desktop\Half-Life.lnk
2014-04-08 17:58 - 2014-04-08 14:53 - 00002044 _____ () C:\Users\Public\Desktop\Sniper Elite.lnk
2014-04-08 17:58 - 2014-01-30 13:45 - 00000000 ____D () C:\Program Files (x86)\Counter-Strike 1.6
2014-04-08 17:56 - 2014-01-21 20:20 - 00000000 ____D () C:\Program Files (x86)\Age of Empires II HD
2014-04-08 14:56 - 2014-04-08 14:56 - 00000000 ____D () C:\Users\miro\Documents\My Cheat Tables
2014-04-08 14:51 - 2014-04-08 14:51 - 00000000 ____D () C:\Program Files (x86)\MC2
2014-04-08 14:31 - 2014-04-08 14:31 - 00000000 ____D () C:\Users\miro\AppData\Local\Activision
2014-04-08 12:42 - 2014-04-08 12:42 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Milestone
2014-04-08 12:42 - 2014-04-08 12:42 - 00000000 ____D () C:\ProgramData\Steam
2014-04-07 23:03 - 2014-04-07 23:02 - 00000000 ____D () C:\Program Files (x86)\MXGP
2014-04-07 23:02 - 2014-04-07 23:02 - 00001817 _____ () C:\Users\Public\Desktop\MXGP.lnk
2014-04-06 08:27 - 2014-03-21 12:21 - 00000000 ____D () C:\Users\miro\Desktop\phpBB3
2014-04-03 03:18 - 2009-07-14 06:45 - 05071408 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-03 03:00 - 2014-01-24 18:00 - 00002155 _____ () C:\Windows\epplauncher.mif
2014-04-03 03:00 - 2014-01-24 18:00 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-04-03 03:00 - 2014-01-24 18:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-04-02 13:51 - 2014-04-02 13:51 - 00002071 _____ () C:\Users\miro\Desktop\Call of Duty Modern Warfare 2 SP 1.0 + 7 Trainer - odkaz.lnk
2014-04-01 09:40 - 2014-04-01 09:39 - 00000000 ____D () C:\Users\miro\Documents\RushForGlory
2014-04-01 09:37 - 2014-04-01 09:37 - 00000000 ____D () C:\Program Files (x86)\Immanitas Entertainment GmbH
2014-03-31 17:48 - 2014-01-15 21:53 - 00116384 _____ () C:\Users\miro\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-31 14:08 - 2014-03-31 14:08 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-03-31 14:08 - 2014-03-31 14:08 - 00000000 ____D () C:\Windows\system32\NV
2014-03-31 14:08 - 2014-03-31 14:08 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-03-31 14:08 - 2014-01-18 21:12 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-31 14:07 - 2014-01-18 21:13 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-31 13:58 - 2014-03-31 13:58 - 00000000 ____D () C:\NVIDIA
2014-03-31 12:24 - 2014-03-31 12:24 - 00000000 ____D () C:\Users\miro\AppData\Local\Intel_Corporation
2014-03-31 12:17 - 2014-03-31 12:17 - 00000000 ____D () C:\ProgramData\Age of Empires II HD - Slovencina
2014-03-30 20:03 - 2014-03-30 20:03 - 00001193 _____ () C:\Users\miro\Desktop\Call of Duty Modern Warfare 2 SP.lnk
2014-03-27 20:11 - 2014-03-27 20:11 - 00000000 ____D () C:\Users\miro\Documents\GTA San Andreas User Files
2014-03-27 20:11 - 2014-01-21 19:42 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-03-27 20:04 - 2014-03-27 20:04 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-03-27 19:42 - 2014-03-27 19:33 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Ulozto File Manager
2014-03-27 19:33 - 2014-03-27 19:33 - 00000000 ____D () C:\Users\miro\Documents\Ulozto
2014-03-27 19:33 - 2014-03-27 19:33 - 00000000 ____D () C:\Program Files (x86)\Ulozto File Manager
2014-03-27 18:57 - 2014-03-26 23:29 - 00000000 ____D () C:\Program Files\Autodesk
2014-03-27 18:57 - 2014-03-26 23:19 - 00000000 ____D () C:\Users\miro\AppData\Roaming\Autodesk
2014-03-27 18:57 - 2014-03-26 23:19 - 00000000 ____D () C:\ProgramData\Autodesk
2014-03-27 18:43 - 2014-03-27 18:43 - 00000000 ____D () C:\Users\miro\AppData\Local\cache
2014-03-27 18:35 - 2014-03-27 18:35 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2014-03-26 23:45 - 2014-03-26 23:39 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-03-26 23:39 - 2014-03-26 23:30 - 00000000 ____D () C:\Users\miro\AppData\Local\Autodesk
2014-03-26 23:34 - 2014-03-26 23:34 - 00000000 ____D () C:\ProgramData\FARO
2014-03-26 23:31 - 2014-03-26 23:31 - 00000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-03-26 23:31 - 2014-03-26 23:31 - 00000000 ____D () C:\Users\miro\Documents\Inventor Server SDK ACAD 2014
2014-03-26 23:30 - 2014-03-26 23:30 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-03-26 23:17 - 2014-03-26 23:17 - 00000000 ____D () C:\Autodesk
Some content of TEMP:
====================
C:\Users\miro\AppData\Local\Temp\cabex.dll
C:\Users\miro\AppData\Local\Temp\CheatEngine63Clean.exe
C:\Users\miro\AppData\Local\Temp\FixMyRegistry.exe
C:\Users\miro\AppData\Local\Temp\SpeedUpMyComputer.exe
C:\Users\miro\AppData\Local\Temp\tu17p84.exe
C:\Users\miro\AppData\Local\Temp\unelevate.exe
C:\Users\miro\AppData\Local\Temp\ytai_ytareg_setup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-19 00:37
==================== End Of Log ============================
V Prílohe je aj Addition.txt
Ďakujem za rady a pomoc
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu- pomalé PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu logu- pomalé PC
- Přílohy
-
- Addition.rar
- (10.15 KiB) Staženo 87 x
Re: Prosím o kontrolu logu- pomalé PC
Ešte prikladám RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by miro at 2014-04-23 20:10:11
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 285 GB (59%) free of 480 GB
Total RAM: 7916 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:10:15, on 23. 4. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\miro.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F3 - REG:win.ini: load=C:\Users\miro\LOCALS~1\Temp\msoavqm.bat
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ShopperProBHO - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~4\Office15\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: ASUS Virtual MFP Service (UsbService) - Unknown owner - C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11667 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 33039248
\??\C:\Windows\system32\conhost.exe "1589811457033478781677661236-4583939251057791559073130199663528281565334968
C:\Windows\System32\spoolsv.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-7735477829220753552092289510666153347-451435638-690730337845352284-1743727250
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
WLIDSvcM.exe 3388
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2732.0.518051922\2092690826" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,4,13,26 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.18.10.3165 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/StableBookmarkValueControl/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="2732.2.273113531\537416818" /prefetch:673131151
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/StableBookmarkValueControl/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="2732.3.1019201152\1975595506" /prefetch:673131151
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/StableBookmarkValueControl/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="2732.8.424266228\922029115" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\miro\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-1.job
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-2.job
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-3.job
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-4.job
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-5.job
=========Mozilla firefox=========
ProfilePath - C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\extensions\
2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com
{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-03-03 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
Shopper Pro - C:\ProgramData\ShopperPro\ShopperPro64.dll [2014-03-27 517992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~4\Office15\GROOVEEX.DLL [2014-03-12 2333400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-03-03 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
Shopper Pro - C:\ProgramData\ShopperPro\ShopperPro.dll [2014-03-27 430440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2014-03-12 1728216]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"UMonit64"=C:\Windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"RtsFT"=C:\Windows\RTFTrack.exe [2013-03-15 6346312]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-05-20 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-05-20 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-05-20 444400]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-05-17 2891592]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Bloody2"=C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-01-15 14066176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-02-10 20924576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cheatengine]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Energy Management]
C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-02-13 8079408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EnergyUtility]
C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-02-13 6199128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-04-15 3814736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-11 292848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-05-08 440320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe","%1"
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-04-23 20:10:11 ----D---- C:\rsit
2014-04-23 20:10:11 ----D---- C:\Program Files\trend micro
2014-04-23 19:57:10 ----D---- C:\FRST
2014-04-23 19:25:46 ----D---- C:\Program Files (x86)\SmartTweak
2014-04-23 19:25:27 ----AD---- C:\ProgramData\TEMP
2014-04-23 19:25:07 ----D---- C:\Program Files (x86)\YouTube Accelerator
2014-04-23 19:25:03 ----D---- C:\ProgramData\ShopperPro
2014-04-21 14:11:36 ----AH---- C:\Windows\system32\hamachi.sys
2014-04-21 14:11:33 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2014-04-21 14:11:07 ----D---- C:\ProgramData\LogMeIn
2014-04-18 17:14:35 ----D---- C:\ProgramData\Bohemia Interactive
2014-04-18 13:14:34 ----D---- C:\Program Files (x86)\Arma 3
2014-04-17 11:07:50 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-04-17 11:07:50 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-04-17 11:07:49 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-04-17 10:45:12 ----D---- C:\Hry
2014-04-17 08:45:44 ----D---- C:\Users\miro\AppData\Roaming\ProfiCAD
2014-04-17 08:45:42 ----D---- C:\Program Files (x86)\ProfiCAD
2014-04-17 08:29:33 ----D---- C:\Program Files (x86)\Borland
2014-04-17 08:28:45 ----A---- C:\Windows\SYSWOW64\hlvdd.dll
2014-04-17 08:28:40 ----A---- C:\Windows\system32\drivers\hardlock.sys
2014-04-17 08:28:34 ----A---- C:\Windows\system32\drivers\aksdf.sys
2014-04-17 08:27:35 ----D---- C:\Program Files (x86)\aucotec
2014-04-17 08:23:19 ----D---- C:\Program Files (x86)\MSSOAP
2014-04-17 07:45:01 ----D---- C:\Program Files (x86)\OEZ
2014-04-15 19:14:57 ----D---- C:\Users\miro\AppData\Roaming\uTorrent
2014-04-15 12:06:02 ----A---- C:\Windows\system32\drivers\PcaSp60.sys
2014-04-15 12:05:43 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50a64.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\drivers\PcaSp60.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\ASIW32N50.dll
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\ASINDIS5.sys
2014-04-15 12:05:03 ----D---- C:\Users\miro\AppData\Roaming\InstallShield
2014-04-14 14:51:07 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-04-14 14:51:07 ----A---- C:\Windows\system32\ieui.dll
2014-04-14 14:51:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-04-14 14:51:03 ----A---- C:\Windows\system32\vbscript.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\iernonce.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\ie4uinit.exe
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\msrating.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\msfeeds.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\jsproxy.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\jscript9diag.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\dxtrans.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\dxtmsft.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-04-14 14:50:57 ----A---- C:\Windows\system32\ieUnatt.exe
2014-04-14 14:50:57 ----A---- C:\Windows\system32\iesetup.dll
2014-04-14 14:50:56 ----A---- C:\Windows\system32\mshtml.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-04-14 14:50:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieapfltr.dll
2014-04-14 14:50:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-04-14 14:50:54 ----A---- C:\Windows\system32\iertutil.dll
2014-04-14 14:50:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-04-14 14:50:53 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-04-14 14:50:53 ----A---- C:\Windows\system32\wininet.dll
2014-04-14 14:50:53 ----A---- C:\Windows\system32\urlmon.dll
2014-04-14 14:50:52 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-04-14 14:50:52 ----A---- C:\Windows\system32\ieframe.dll
2014-04-14 14:50:51 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-04-14 14:50:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-04-14 14:50:51 ----A---- C:\Windows\system32\jscript9.dll
2014-04-10 12:46:58 ----A---- C:\Windows\SYSWOW64\BReWErS.dll
2014-04-10 12:41:48 ----A---- C:\Windows\game.ini
2014-04-10 05:24:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-04-10 05:24:22 ----A---- C:\Windows\system32\iologmsg.dll
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\storport.sys
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64win.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64cpu.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\ntvdm64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\kernel32.dll
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\user.exe
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-04-10 05:19:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-04-09 21:03:46 ----D---- C:\Users\miro\AppData\Roaming\Kastner software
2014-04-09 21:02:55 ----D---- C:\ProgramData\KASTNER software
2014-04-09 21:02:55 ----D---- C:\Program Files (x86)\KASTNER software
2014-04-08 14:51:01 ----D---- C:\Program Files (x86)\MC2
2014-04-08 12:42:05 ----D---- C:\Users\miro\AppData\Roaming\Milestone
2014-04-08 12:42:05 ----D---- C:\ProgramData\Steam
2014-04-07 23:02:55 ----D---- C:\Program Files (x86)\MXGP
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-04-01 09:38:52 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-04-01 09:37:01 ----D---- C:\Program Files (x86)\Immanitas Entertainment GmbH
2014-03-31 14:08:09 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-03-31 14:08:01 ----D---- C:\Windows\SYSWOW64\NV
2014-03-31 14:08:01 ----D---- C:\Windows\system32\NV
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvopencl.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvoglv64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvIFR64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvFBC64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvdispgenco6433523.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvdispco6433523.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuvid.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuda.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2014-03-31 14:05:11 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-03-31 14:05:10 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-03-31 14:05:10 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-03-31 14:05:10 ----A---- C:\Windows\system32\nvcompiler.dll
2014-03-31 13:58:25 ----D---- C:\NVIDIA
2014-03-31 12:17:50 ----D---- C:\ProgramData\Age of Empires II HD - Slovencina
2014-03-30 20:10:14 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-03-30 20:10:14 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-03-30 20:10:13 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-03-30 20:10:12 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-03-30 20:10:12 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-03-30 20:10:11 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-03-30 20:10:11 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-03-30 20:10:09 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-03-30 20:10:07 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-03-30 20:10:06 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-03-30 20:10:03 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-03-30 20:10:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-03-30 20:10:01 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-03-30 20:10:01 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-03-30 20:09:58 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-03-30 20:09:53 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-03-30 20:09:52 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-03-30 20:09:52 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-03-30 19:40:07 ----D---- C:\Program Files (x86)\Activision
2014-03-27 20:04:55 ----D---- C:\Program Files (x86)\Rockstar Games
2014-03-27 19:33:56 ----D---- C:\Users\miro\AppData\Roaming\Ulozto File Manager
2014-03-27 19:33:53 ----D---- C:\Program Files (x86)\Ulozto File Manager
2014-03-27 18:35:50 ----D---- C:\Program Files (x86)\Autodesk
2014-03-26 23:39:28 ----D---- C:\ProgramData\FLEXnet
2014-03-26 23:34:00 ----D---- C:\ProgramData\FARO
2014-03-26 23:30:58 ----D---- C:\Program Files\Common Files\Macrovision Shared
2014-03-26 23:29:31 ----D---- C:\Program Files\Autodesk
2014-03-26 23:28:36 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-03-26 23:28:36 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-03-26 23:28:36 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-03-26 23:28:35 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-03-26 23:28:34 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-03-26 23:19:18 ----D---- C:\Users\miro\AppData\Roaming\Autodesk
2014-03-26 23:19:18 ----D---- C:\ProgramData\Autodesk
2014-03-26 23:17:23 ----D---- C:\Autodesk
======List of files/folders modified in the last 1 month======
2014-04-23 20:10:11 ----RD---- C:\Program Files
2014-04-23 20:10:03 ----D---- C:\Windows\Temp
2014-04-23 20:06:11 ----D---- C:\Windows\system32\config
2014-04-23 20:01:03 ----D---- C:\Users\miro\AppData\Roaming\Skype
2014-04-23 19:57:58 ----D---- C:\Windows
2014-04-23 19:52:29 ----D---- C:\Users\miro\AppData\Roaming\FileZilla
2014-04-23 19:52:29 ----D---- C:\Users\miro\AppData\Roaming\AIMP3
2014-04-23 19:52:22 ----D---- C:\Windows\inf
2014-04-23 19:52:20 ----D---- C:\Windows\Logs
2014-04-23 19:52:20 ----D---- C:\Windows\debug
2014-04-23 19:50:33 ----D---- C:\Windows\System32
2014-04-23 19:50:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-04-23 19:46:09 ----D---- C:\Windows\Prefetch
2014-04-23 19:41:50 ----RD---- C:\Program Files (x86)
2014-04-23 19:26:59 ----D---- C:\Windows\SysWOW64
2014-04-23 19:26:20 ----D---- C:\Windows\system32\Tasks
2014-04-23 19:25:44 ----D---- C:\Windows\Tasks
2014-04-23 19:25:27 ----HD---- C:\ProgramData
2014-04-23 19:19:01 ----D---- C:\Program Files (x86)\FastShare
2014-04-21 18:06:23 ----D---- C:\Users\miro\AppData\Roaming\vlc
2014-04-21 14:11:38 ----SHD---- C:\Windows\Installer
2014-04-21 14:10:41 ----D---- C:\Windows\system32\drivers
2014-04-21 14:10:18 ----SHD---- C:\System Volume Information
2014-04-17 11:07:16 ----RSD---- C:\Windows\assembly
2014-04-17 08:48:41 ----SD---- C:\Users\miro\AppData\Roaming\Microsoft
2014-04-17 08:33:11 ----A---- C:\Windows\win.ini
2014-04-17 08:29:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-04-17 08:29:33 ----D---- C:\Program Files (x86)\Common Files
2014-04-17 08:28:51 ----D---- C:\Windows\system32\catroot
2014-04-17 08:28:47 ----D---- C:\Windows\system32\DriverStore
2014-04-17 08:28:34 ----D---- C:\Windows\system32\Setup
2014-04-17 08:23:37 ----D---- C:\Windows\winsxs
2014-04-15 19:15:14 ----D---- C:\Program Files\CCleaner
2014-04-15 12:06:00 ----D---- C:\Windows\SYSWOW64\drivers
2014-04-15 12:05:40 ----D---- C:\Program Files (x86)\ASUS
2014-04-15 12:05:39 ----D---- C:\Windows\system32\catroot2
2014-04-14 22:25:31 ----D---- C:\Windows\rescache
2014-04-14 15:01:24 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-04-14 15:01:24 ----D---- C:\Windows\SYSWOW64\en-US
2014-04-14 15:01:24 ----D---- C:\Windows\system32\sk-SK
2014-04-14 15:01:24 ----D---- C:\Windows\system32\en-US
2014-04-14 15:01:24 ----D---- C:\Windows\PolicyDefinitions
2014-04-14 15:01:24 ----D---- C:\Program Files\Internet Explorer
2014-04-14 15:01:24 ----D---- C:\Program Files (x86)\Internet Explorer
2014-04-14 14:49:29 ----D---- C:\ProgramData\Microsoft Help
2014-04-11 03:23:05 ----D---- C:\Windows\AppPatch
2014-04-11 03:03:51 ----D---- C:\Windows\system32\MRT
2014-04-11 03:02:19 ----A---- C:\Windows\system32\MRT.exe
2014-04-08 17:58:22 ----D---- C:\Program Files (x86)\Counter-Strike 1.6
2014-04-08 17:56:35 ----D---- C:\Program Files (x86)\Age of Empires II HD
2014-04-03 03:00:37 ----D---- C:\Program Files\Microsoft Security Client
2014-04-03 03:00:35 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-03-31 14:08:35 ----D---- C:\Windows\Microsoft.NET
2014-03-31 14:08:09 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-03-31 14:08:01 ----D---- C:\Temp
2014-03-31 14:07:59 ----D---- C:\ProgramData\NVIDIA
2014-03-31 12:17:53 ----RSD---- C:\Windows\Fonts
2014-03-27 18:57:43 ----D---- C:\Program Files\Common Files
2014-03-27 18:57:27 ----D---- C:\Windows\Downloaded Program Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-11 20464]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX64.sys [2014-02-13 39008]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2014-03-04 33736]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-01-17 386680]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aksdf;aksdf; C:\Windows\system32\DRIVERS\aksdf.sys [2006-12-13 65024]
R2 Hardlock;Hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2006-12-04 314368]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2014-02-13 30816]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2013-02-13 163808]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2013-05-16 374536]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-05-08 4431840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-11 366576]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-11 785904]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-04-26 128200]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-01-11 64624]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2013-02-05 11518976]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 rtsuvc;Lenovo EasyCamera; C:\Windows\system32\DRIVERS\rtsuvc.sys [2013-03-15 8243272]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2014-01-25 34032]
R3 vuhub;Virtual Usb Hub; C:\Windows\system32\DRIVERS\vuhub.sys [2007-12-17 47616]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 SPDRIVER_1.35.1.155;SPDRIVER_1.35.1.155; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys []
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2013-02-13 163808]
S3 army9a77;army9a77; C:\Windows\system32\drivers\army9a77.sys []
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-05-08 442368]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-02-13 770528]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-02-08 621296]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-04-15 2227536]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-04-08 377616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-03-04 922968]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-02-08 149744]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 UsbService;ASUS Virtual MFP Service; C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe [2010-08-10 334848]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-02-08 3386608]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2014-02-06 1069248]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-05-20 279024]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-03-26 1471792]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-04 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-02-08 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-15 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by miro at 2014-04-23 20:10:11
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 285 GB (59%) free of 480 GB
Total RAM: 7916 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:10:15, on 23. 4. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\miro.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F3 - REG:win.ini: load=C:\Users\miro\LOCALS~1\Temp\msoavqm.bat
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ShopperProBHO - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - C:\ProgramData\ShopperPro\ShopperPro.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~4\Office15\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: ASUS Virtual MFP Service (UsbService) - Unknown owner - C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11667 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 33039248
\??\C:\Windows\system32\conhost.exe "1589811457033478781677661236-4583939251057791559073130199663528281565334968
C:\Windows\System32\spoolsv.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-7735477829220753552092289510666153347-451435638-690730337845352284-1743727250
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
WLIDSvcM.exe 3388
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2732.0.518051922\2092690826" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,4,13,26 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.18.10.3165 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/StableBookmarkValueControl/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="2732.2.273113531\537416818" /prefetch:673131151
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/StableBookmarkValueControl/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="2732.3.1019201152\1975595506" /prefetch:673131151
"C:\Users\miro\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group6 pct:10f stable:pp1 use_cacheable_ntp:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/StableBookmarkValueControl/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_87/UMA-Uniformity-Trial-10-Percent/group_09/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --enable-software-compositing --channel="2732.8.424266228\922029115" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\miro\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-1.job
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-2.job
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-3.job
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-4.job
C:\Windows\tasks\b758eec0-2d77-437d-8ac8-dcd399a3b7db-5.job
=========Mozilla firefox=========
ProfilePath - C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\extensions\
2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com
{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551110}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-03-03 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
Shopper Pro - C:\ProgramData\ShopperPro\ShopperPro64.dll [2014-03-27 517992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~4\Office15\GROOVEEX.DLL [2014-03-12 2333400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-03-03 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
Shopper Pro - C:\ProgramData\ShopperPro\ShopperPro.dll [2014-03-27 430440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2014-03-12 1728216]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"UMonit64"=C:\Windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"RtsFT"=C:\Windows\RTFTrack.exe [2013-03-15 6346312]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-05-20 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-05-20 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-05-20 444400]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-05-17 2891592]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11 1271072]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Bloody2"=C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-01-15 14066176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-02-10 20924576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cheatengine]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Energy Management]
C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-02-13 8079408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EnergyUtility]
C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-02-13 6199128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-04-15 3814736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-11 292848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-05-08 440320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe","%1"
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-04-23 20:10:11 ----D---- C:\rsit
2014-04-23 20:10:11 ----D---- C:\Program Files\trend micro
2014-04-23 19:57:10 ----D---- C:\FRST
2014-04-23 19:25:46 ----D---- C:\Program Files (x86)\SmartTweak
2014-04-23 19:25:27 ----AD---- C:\ProgramData\TEMP
2014-04-23 19:25:07 ----D---- C:\Program Files (x86)\YouTube Accelerator
2014-04-23 19:25:03 ----D---- C:\ProgramData\ShopperPro
2014-04-21 14:11:36 ----AH---- C:\Windows\system32\hamachi.sys
2014-04-21 14:11:33 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2014-04-21 14:11:07 ----D---- C:\ProgramData\LogMeIn
2014-04-18 17:14:35 ----D---- C:\ProgramData\Bohemia Interactive
2014-04-18 13:14:34 ----D---- C:\Program Files (x86)\Arma 3
2014-04-17 11:07:50 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-04-17 11:07:50 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-04-17 11:07:49 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-04-17 10:45:12 ----D---- C:\Hry
2014-04-17 08:45:44 ----D---- C:\Users\miro\AppData\Roaming\ProfiCAD
2014-04-17 08:45:42 ----D---- C:\Program Files (x86)\ProfiCAD
2014-04-17 08:29:33 ----D---- C:\Program Files (x86)\Borland
2014-04-17 08:28:45 ----A---- C:\Windows\SYSWOW64\hlvdd.dll
2014-04-17 08:28:40 ----A---- C:\Windows\system32\drivers\hardlock.sys
2014-04-17 08:28:34 ----A---- C:\Windows\system32\drivers\aksdf.sys
2014-04-17 08:27:35 ----D---- C:\Program Files (x86)\aucotec
2014-04-17 08:23:19 ----D---- C:\Program Files (x86)\MSSOAP
2014-04-17 07:45:01 ----D---- C:\Program Files (x86)\OEZ
2014-04-15 19:14:57 ----D---- C:\Users\miro\AppData\Roaming\uTorrent
2014-04-15 12:06:02 ----A---- C:\Windows\system32\drivers\PcaSp60.sys
2014-04-15 12:05:43 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50a64.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\drivers\PcaSp60.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\ASIW32N50.dll
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\ASINDIS5.sys
2014-04-15 12:05:03 ----D---- C:\Users\miro\AppData\Roaming\InstallShield
2014-04-14 14:51:07 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-04-14 14:51:07 ----A---- C:\Windows\system32\ieui.dll
2014-04-14 14:51:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-04-14 14:51:03 ----A---- C:\Windows\system32\vbscript.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\iernonce.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\ie4uinit.exe
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\msrating.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\msfeeds.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\jsproxy.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\jscript9diag.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\dxtrans.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\dxtmsft.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-04-14 14:50:57 ----A---- C:\Windows\system32\ieUnatt.exe
2014-04-14 14:50:57 ----A---- C:\Windows\system32\iesetup.dll
2014-04-14 14:50:56 ----A---- C:\Windows\system32\mshtml.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-04-14 14:50:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieapfltr.dll
2014-04-14 14:50:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-04-14 14:50:54 ----A---- C:\Windows\system32\iertutil.dll
2014-04-14 14:50:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-04-14 14:50:53 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-04-14 14:50:53 ----A---- C:\Windows\system32\wininet.dll
2014-04-14 14:50:53 ----A---- C:\Windows\system32\urlmon.dll
2014-04-14 14:50:52 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-04-14 14:50:52 ----A---- C:\Windows\system32\ieframe.dll
2014-04-14 14:50:51 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-04-14 14:50:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-04-14 14:50:51 ----A---- C:\Windows\system32\jscript9.dll
2014-04-10 12:46:58 ----A---- C:\Windows\SYSWOW64\BReWErS.dll
2014-04-10 12:41:48 ----A---- C:\Windows\game.ini
2014-04-10 05:24:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-04-10 05:24:22 ----A---- C:\Windows\system32\iologmsg.dll
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\storport.sys
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64win.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64cpu.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\ntvdm64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\kernel32.dll
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\user.exe
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-04-10 05:19:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-04-09 21:03:46 ----D---- C:\Users\miro\AppData\Roaming\Kastner software
2014-04-09 21:02:55 ----D---- C:\ProgramData\KASTNER software
2014-04-09 21:02:55 ----D---- C:\Program Files (x86)\KASTNER software
2014-04-08 14:51:01 ----D---- C:\Program Files (x86)\MC2
2014-04-08 12:42:05 ----D---- C:\Users\miro\AppData\Roaming\Milestone
2014-04-08 12:42:05 ----D---- C:\ProgramData\Steam
2014-04-07 23:02:55 ----D---- C:\Program Files (x86)\MXGP
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-04-01 09:38:52 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-04-01 09:37:01 ----D---- C:\Program Files (x86)\Immanitas Entertainment GmbH
2014-03-31 14:08:09 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-03-31 14:08:01 ----D---- C:\Windows\SYSWOW64\NV
2014-03-31 14:08:01 ----D---- C:\Windows\system32\NV
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvopencl.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvoglv64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvIFR64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvFBC64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvdispgenco6433523.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvdispco6433523.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuvid.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuda.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2014-03-31 14:05:11 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-03-31 14:05:10 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-03-31 14:05:10 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-03-31 14:05:10 ----A---- C:\Windows\system32\nvcompiler.dll
2014-03-31 13:58:25 ----D---- C:\NVIDIA
2014-03-31 12:17:50 ----D---- C:\ProgramData\Age of Empires II HD - Slovencina
2014-03-30 20:10:14 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-03-30 20:10:14 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-03-30 20:10:13 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-03-30 20:10:12 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-03-30 20:10:12 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-03-30 20:10:11 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-03-30 20:10:11 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-03-30 20:10:09 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-03-30 20:10:07 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-03-30 20:10:06 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-03-30 20:10:03 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-03-30 20:10:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-03-30 20:10:01 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-03-30 20:10:01 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-03-30 20:09:58 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-03-30 20:09:53 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-03-30 20:09:52 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-03-30 20:09:52 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-03-30 19:40:07 ----D---- C:\Program Files (x86)\Activision
2014-03-27 20:04:55 ----D---- C:\Program Files (x86)\Rockstar Games
2014-03-27 19:33:56 ----D---- C:\Users\miro\AppData\Roaming\Ulozto File Manager
2014-03-27 19:33:53 ----D---- C:\Program Files (x86)\Ulozto File Manager
2014-03-27 18:35:50 ----D---- C:\Program Files (x86)\Autodesk
2014-03-26 23:39:28 ----D---- C:\ProgramData\FLEXnet
2014-03-26 23:34:00 ----D---- C:\ProgramData\FARO
2014-03-26 23:30:58 ----D---- C:\Program Files\Common Files\Macrovision Shared
2014-03-26 23:29:31 ----D---- C:\Program Files\Autodesk
2014-03-26 23:28:36 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-03-26 23:28:36 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-03-26 23:28:36 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-03-26 23:28:35 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-03-26 23:28:34 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-03-26 23:19:18 ----D---- C:\Users\miro\AppData\Roaming\Autodesk
2014-03-26 23:19:18 ----D---- C:\ProgramData\Autodesk
2014-03-26 23:17:23 ----D---- C:\Autodesk
======List of files/folders modified in the last 1 month======
2014-04-23 20:10:11 ----RD---- C:\Program Files
2014-04-23 20:10:03 ----D---- C:\Windows\Temp
2014-04-23 20:06:11 ----D---- C:\Windows\system32\config
2014-04-23 20:01:03 ----D---- C:\Users\miro\AppData\Roaming\Skype
2014-04-23 19:57:58 ----D---- C:\Windows
2014-04-23 19:52:29 ----D---- C:\Users\miro\AppData\Roaming\FileZilla
2014-04-23 19:52:29 ----D---- C:\Users\miro\AppData\Roaming\AIMP3
2014-04-23 19:52:22 ----D---- C:\Windows\inf
2014-04-23 19:52:20 ----D---- C:\Windows\Logs
2014-04-23 19:52:20 ----D---- C:\Windows\debug
2014-04-23 19:50:33 ----D---- C:\Windows\System32
2014-04-23 19:50:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-04-23 19:46:09 ----D---- C:\Windows\Prefetch
2014-04-23 19:41:50 ----RD---- C:\Program Files (x86)
2014-04-23 19:26:59 ----D---- C:\Windows\SysWOW64
2014-04-23 19:26:20 ----D---- C:\Windows\system32\Tasks
2014-04-23 19:25:44 ----D---- C:\Windows\Tasks
2014-04-23 19:25:27 ----HD---- C:\ProgramData
2014-04-23 19:19:01 ----D---- C:\Program Files (x86)\FastShare
2014-04-21 18:06:23 ----D---- C:\Users\miro\AppData\Roaming\vlc
2014-04-21 14:11:38 ----SHD---- C:\Windows\Installer
2014-04-21 14:10:41 ----D---- C:\Windows\system32\drivers
2014-04-21 14:10:18 ----SHD---- C:\System Volume Information
2014-04-17 11:07:16 ----RSD---- C:\Windows\assembly
2014-04-17 08:48:41 ----SD---- C:\Users\miro\AppData\Roaming\Microsoft
2014-04-17 08:33:11 ----A---- C:\Windows\win.ini
2014-04-17 08:29:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-04-17 08:29:33 ----D---- C:\Program Files (x86)\Common Files
2014-04-17 08:28:51 ----D---- C:\Windows\system32\catroot
2014-04-17 08:28:47 ----D---- C:\Windows\system32\DriverStore
2014-04-17 08:28:34 ----D---- C:\Windows\system32\Setup
2014-04-17 08:23:37 ----D---- C:\Windows\winsxs
2014-04-15 19:15:14 ----D---- C:\Program Files\CCleaner
2014-04-15 12:06:00 ----D---- C:\Windows\SYSWOW64\drivers
2014-04-15 12:05:40 ----D---- C:\Program Files (x86)\ASUS
2014-04-15 12:05:39 ----D---- C:\Windows\system32\catroot2
2014-04-14 22:25:31 ----D---- C:\Windows\rescache
2014-04-14 15:01:24 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-04-14 15:01:24 ----D---- C:\Windows\SYSWOW64\en-US
2014-04-14 15:01:24 ----D---- C:\Windows\system32\sk-SK
2014-04-14 15:01:24 ----D---- C:\Windows\system32\en-US
2014-04-14 15:01:24 ----D---- C:\Windows\PolicyDefinitions
2014-04-14 15:01:24 ----D---- C:\Program Files\Internet Explorer
2014-04-14 15:01:24 ----D---- C:\Program Files (x86)\Internet Explorer
2014-04-14 14:49:29 ----D---- C:\ProgramData\Microsoft Help
2014-04-11 03:23:05 ----D---- C:\Windows\AppPatch
2014-04-11 03:03:51 ----D---- C:\Windows\system32\MRT
2014-04-11 03:02:19 ----A---- C:\Windows\system32\MRT.exe
2014-04-08 17:58:22 ----D---- C:\Program Files (x86)\Counter-Strike 1.6
2014-04-08 17:56:35 ----D---- C:\Program Files (x86)\Age of Empires II HD
2014-04-03 03:00:37 ----D---- C:\Program Files\Microsoft Security Client
2014-04-03 03:00:35 ----D---- C:\Program Files (x86)\Microsoft Security Client
2014-03-31 14:08:35 ----D---- C:\Windows\Microsoft.NET
2014-03-31 14:08:09 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-03-31 14:08:01 ----D---- C:\Temp
2014-03-31 14:07:59 ----D---- C:\ProgramData\NVIDIA
2014-03-31 12:17:53 ----RSD---- C:\Windows\Fonts
2014-03-27 18:57:43 ----D---- C:\Program Files\Common Files
2014-03-27 18:57:27 ----D---- C:\Windows\Downloaded Program Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-11 20464]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX64.sys [2014-02-13 39008]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2014-03-04 33736]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-01-17 386680]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aksdf;aksdf; C:\Windows\system32\DRIVERS\aksdf.sys [2006-12-13 65024]
R2 Hardlock;Hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2006-12-04 314368]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2014-02-13 30816]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2013-02-13 163808]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2013-05-16 374536]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-05-08 4431840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-11 366576]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-11 785904]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-04-26 128200]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-01-11 64624]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2013-02-05 11518976]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 rtsuvc;Lenovo EasyCamera; C:\Windows\system32\DRIVERS\rtsuvc.sys [2013-03-15 8243272]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2014-01-25 34032]
R3 vuhub;Virtual Usb Hub; C:\Windows\system32\DRIVERS\vuhub.sys [2007-12-17 47616]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 SPDRIVER_1.35.1.155;SPDRIVER_1.35.1.155; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys []
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2013-02-13 163808]
S3 army9a77;army9a77; C:\Windows\system32\drivers\army9a77.sys []
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-05-08 442368]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-02-13 770528]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-02-08 621296]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-04-15 2227536]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-04-08 377616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2014-03-11 23808]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-03-04 922968]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-02-08 149744]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 UsbService;ASUS Virtual MFP Service; C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe [2010-08-10 334848]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-02-08 3386608]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 Service KMSELDI;Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [2014-02-06 1069248]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-05-20 279024]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-03-26 1471792]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-04 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-02-08 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-15 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Re: Prosím o kontrolu logu- pomalé PC
a ešte Combofix:
ComboFix 14-04-20.01 - miro . 04. 2014 20:20:10.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.7916.6134 [GMT 2:00]
Running from: c:\users\miro\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\Local Settings\Temp
c:\programdata\Roaming
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cigiagpbkapepgklncnajbakkpkopmam_0
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cigiagpbkapepgklncnajbakkpkopmam_0\26
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\background.html
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\crossriderManifest.json
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\manifest.xml
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins.json
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\1.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\102.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\104.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\13.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\14.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\155.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\17.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\177.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\182.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\183.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\184.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\19.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\195.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\207.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\21.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\217.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\22.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\220.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\223.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\242.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\244.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\246.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\28.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\4.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\47.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\64.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\7.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\72.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\78.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\80.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\9.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\91.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\93.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\97.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\userCode\background.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\userCode\extension.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\chromeCoreFilesIndex.txt
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\icons\actions\1.png
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\icons\icon128.png
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\icons\icon16.png
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\icons\icon48.png
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\cookie.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\chrome.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\message.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\monitor.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\pageAction.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\pageActionBG.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\background.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\app_api.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\bg_app_api.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\consts.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\cookie_store.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\crossriderAPI.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\delegate.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\events.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\extensionDataStore.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\installer.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\logFile.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\logging.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\onBGDocumentLoad.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\popupResource\newPopup.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\popupResource\popup.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\reports.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\storageWrapper.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\updateManager.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\util.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\xhr.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\main.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\platformVersion.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\manifest.json
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\popup.html
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\000005.ldb
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\000015.log
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\CURRENT
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\LOCK
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\LOG
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\LOG.old
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\MANIFEST-000013
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cigiagpbkapepgklncnajbakkpkopmam_0.localstorage
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\miro\AppData\Local\MSGBOX.EXE
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\defaults\preferences\prefs.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\manifest.xml
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins.json
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\1.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\102.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\104.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\13.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\14.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\155.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\16.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\17.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\177.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\182.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\183.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\184.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\195.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\207.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\21.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\217.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\22.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\220.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\223.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\242.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\244.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\246.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\28.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\4.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\47.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\64.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\7.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\72.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\78.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\9.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\91.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\93.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\98.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\userCode\background.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\userCode\extension.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome.manifest
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\asyncDB.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\background.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\browserAction.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\contextMenu.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\dbManager.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\dom_bg.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\fileManager.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\firefox.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\firefoxNotifications.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\firefoxOmnibox.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\message.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\pageAction.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\request.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\tabs.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\webRequest.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\windowsMessagingHandler.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\background.html
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\baseObject.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\browser.xul
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\addressBarChangeObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\console.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\consts.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\delegate.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\extensionDataStore.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\folderIOWrapper.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\httpObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\IDBWrapper.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\installer.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\logFile.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\prefs.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\progressListenerObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\registry.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\reloadObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\reports.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\requestObject.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\searchSettings.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\uninstallObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\updateManager.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\utils.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\xhr.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\dialog.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\ffCoreFilesIndex.txt
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\main.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\options.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\options.xul
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\platformVersion.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\search_dialog.xul
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\install.rdf
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\locale\en-US\translations.dtd
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button1.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button2.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button3.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button4.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button5.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\crossrider_statusbar.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\icon128.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\icon16.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\icon24.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\icon48.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\panelarrow-up.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\popup.html
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\skin.css
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\update.css
c:\windows\SysWow64\BReWErS.dll
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_Service KMSELDI
.
.
((((((((((((((((((((((((( Files Created from 2014-03-23 to 2014-04-23 )))))))))))))))))))))))))))))))
.
.
2014-04-23 18:27 . 2014-04-23 18:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-04-23 18:10 . 2014-04-23 18:10 -------- d-----w- C:\rsit
2014-04-23 18:10 . 2014-04-23 18:10 -------- d-----w- c:\program files\trend micro
2014-04-23 18:09 . 2014-04-23 18:09 75888 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3DBCAE19-EE82-468D-9EFD-046A4DF286EC}\offreg.dll
2014-04-23 17:57 . 2014-04-23 17:58 -------- d-----w- C:\FRST
2014-04-23 17:25 . 2014-04-23 17:47 -------- d-----w- c:\program files (x86)\SmartTweak
2014-04-23 17:25 . 2014-04-23 17:43 -------- d-----w- c:\program files (x86)\YouTube Accelerator
2014-04-23 17:25 . 2014-04-23 17:25 -------- d-----w- c:\users\miro\AppData\Local\Installer
2014-04-23 17:25 . 2014-04-23 17:25 -------- d-----w- c:\programdata\ShopperPro
2014-04-23 17:23 . 2014-04-23 17:23 -------- d-----w- c:\users\miro\AppData\Local\CrashRpt
2014-04-23 06:56 . 2014-04-16 10:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3DBCAE19-EE82-468D-9EFD-046A4DF286EC}\mpengine.dll
2014-04-22 06:55 . 2014-04-16 10:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-04-21 12:11 . 2009-03-18 16:35 33856 ---ha-w- c:\windows\system32\hamachi.sys
2014-04-21 12:11 . 2014-04-21 12:11 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2014-04-21 12:11 . 2014-04-23 18:30 -------- d-----w- c:\users\miro\AppData\Local\LogMeIn Hamachi
2014-04-21 12:11 . 2014-04-21 12:11 -------- d-----w- c:\users\miro\AppData\Local\LogMeIn
2014-04-21 12:11 . 2014-04-21 12:11 -------- d-----w- c:\programdata\LogMeIn
2014-04-19 19:00 . 2014-04-19 19:00 -------- d-----w- c:\users\miro\AppData\Local\SKIDROW
2014-04-19 06:36 . 2014-02-21 14:22 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B316E16A-5A63-480D-8387-B77D87FB6486}\gapaengine.dll
2014-04-18 15:14 . 2014-04-18 15:15 -------- d-----w- c:\users\miro\AppData\Local\Arma 3
2014-04-18 15:14 . 2014-04-18 15:14 -------- d-----w- c:\programdata\Bohemia Interactive
2014-04-18 11:14 . 2014-04-18 11:31 -------- d-----w- c:\program files (x86)\Arma 3
2014-04-17 09:07 . 2010-02-04 08:01 78680 ----a-w- c:\windows\system32\XAPOFX1_4.dll
2014-04-17 09:07 . 2010-02-04 08:01 530776 ----a-w- c:\windows\system32\XAudio2_6.dll
2014-04-17 09:07 . 2010-02-04 08:01 176984 ----a-w- c:\windows\system32\xactengine3_6.dll
2014-04-17 08:45 . 2014-04-17 08:45 -------- d-----w- C:\Hry
2014-04-17 06:45 . 2014-04-22 15:12 -------- d-----w- c:\users\miro\AppData\Roaming\ProfiCAD
2014-04-17 06:45 . 2014-04-17 06:53 -------- d-----w- c:\program files (x86)\ProfiCAD
2014-04-17 06:30 . 2014-04-17 06:30 -------- d-----w- c:\users\miro\AppData\Local\Diagnostics
2014-04-17 06:29 . 1999-11-12 02:11 183808 ----a-w- c:\windows\SysWow64\bdeadmin.cpl
2014-04-17 06:29 . 2014-04-17 06:29 -------- d-----w- c:\program files (x86)\Common Files\Borland Shared
2014-04-17 06:29 . 2014-04-17 06:29 -------- d-----w- c:\program files (x86)\Borland
2014-04-17 06:28 . 2006-10-18 17:12 191488 ----a-w- c:\windows\SysWow64\hlvdd.dll
2014-04-17 06:28 . 2006-12-04 08:44 314368 ----a-w- c:\windows\system32\drivers\hardlock.sys
2014-04-17 06:28 . 2006-12-13 16:14 65024 ----a-w- c:\windows\system32\drivers\aksdf.sys
2014-04-17 06:28 . 2014-04-17 06:28 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2014-04-17 06:27 . 2014-04-17 06:27 -------- d-----w- c:\program files (x86)\aucotec
2014-04-17 06:23 . 2014-04-17 06:23 -------- d-----w- c:\program files (x86)\MSSOAP
2014-04-17 06:22 . 2008-11-15 06:50 209608 ------w- c:\windows\SysWow64\Tabctl32.ocx
2014-04-17 06:22 . 2003-11-10 16:14 729088 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2014-04-17 06:22 . 2003-11-10 16:13 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2014-04-17 06:22 . 2003-11-10 16:12 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2014-04-17 06:22 . 2003-11-10 16:12 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2014-04-17 06:22 . 2003-11-10 16:11 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2014-04-17 06:22 . 2014-04-17 06:22 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2014-04-17 06:22 . 2014-04-17 06:22 188548 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2014-04-17 05:57 . 2014-04-17 05:57 -------- d-----w- c:\users\miro\Prozik
2014-04-17 05:51 . 2014-04-17 06:41 -------- d-----w- c:\users\miro\SICHR14
2014-04-17 05:45 . 2014-04-17 05:57 -------- d-----w- c:\program files (x86)\OEZ
2014-04-15 17:14 . 2014-04-23 17:52 -------- d-----w- c:\users\miro\AppData\Roaming\uTorrent
2014-04-15 10:06 . 2010-09-07 12:27 38912 ----a-w- c:\windows\system32\drivers\PcaSp60.sys
2014-04-15 10:05 . 2006-11-28 19:46 41280 ----a-w- c:\windows\SysWow64\drivers\PCASp50a64.sys
2014-04-15 10:05 . 2010-09-07 12:27 38912 ----a-w- c:\windows\SysWow64\drivers\PcaSp60.sys
2014-04-15 10:05 . 2006-11-28 19:46 52800 ----a-w- c:\windows\SysWow64\drivers\PCASp50.sys
2014-04-15 10:05 . 2003-04-21 19:46 61440 ----a-w- c:\windows\SysWow64\ASIW32N50.dll
2014-04-15 10:05 . 2002-09-10 17:35 16302 ----a-w- c:\windows\SysWow64\ASINDIS5.sys
2014-04-15 10:05 . 2001-04-16 03:48 15577 ----a-w- c:\windows\SysWow64\ASINDIS3.vxd
2014-04-15 10:05 . 2014-04-15 10:05 -------- d-----w- c:\users\miro\AppData\Roaming\InstallShield
2014-04-14 12:50 . 2014-03-06 09:31 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-04-10 03:24 . 2014-02-04 02:35 190912 ----a-w- c:\windows\system32\drivers\storport.sys
2014-04-10 03:24 . 2014-02-04 02:35 274880 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-04-10 03:24 . 2014-02-04 02:35 27584 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2014-04-10 03:24 . 2014-02-04 02:28 2048 ----a-w- c:\windows\system32\iologmsg.dll
2014-04-10 03:24 . 2014-02-04 02:00 2048 ----a-w- c:\windows\SysWow64\iologmsg.dll
2014-04-10 03:19 . 2014-03-04 09:44 362496 ----a-w- c:\windows\system32\wow64win.dll
2014-04-10 03:19 . 2014-03-04 09:44 243712 ----a-w- c:\windows\system32\wow64.dll
2014-04-10 03:19 . 2014-03-04 09:44 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2014-04-10 03:19 . 2014-03-04 09:44 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2014-04-10 03:19 . 2014-03-04 09:44 1163264 ----a-w- c:\windows\system32\kernel32.dll
2014-04-10 03:19 . 2014-03-04 09:17 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2014-04-10 03:19 . 2014-03-04 09:16 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2014-04-10 03:19 . 2014-03-04 09:16 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2014-04-10 03:19 . 2014-03-04 08:09 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2014-04-10 03:19 . 2014-03-04 08:09 2048 ----a-w- c:\windows\SysWow64\user.exe
2014-04-10 03:19 . 2014-01-24 02:37 1684928 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-04-09 19:03 . 2014-04-09 19:03 -------- d-----w- c:\users\miro\AppData\Roaming\Kastner software
2014-04-09 19:02 . 2014-04-09 19:02 -------- d-----w- c:\programdata\KASTNER software
2014-04-09 19:02 . 2014-04-09 19:02 -------- d-----w- c:\program files (x86)\KASTNER software
2014-04-08 12:51 . 2014-04-08 12:51 -------- d-----w- c:\program files (x86)\MC2
2014-04-08 12:50 . 2001-09-05 03:18 77824 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2014-04-08 12:50 . 2001-09-05 03:18 225280 ------w- c:\program files (x86)\Common Files\InstallShield\IScript\IScript.dll
2014-04-08 12:50 . 2001-09-05 03:14 176128 ------w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2014-04-08 12:50 . 2001-09-05 03:13 32768 ------w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2014-04-08 12:50 . 2000-01-04 05:39 212992 ------w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
2014-04-08 12:31 . 2014-04-08 12:31 -------- d-----w- c:\users\miro\AppData\Local\Activision
2014-04-08 10:42 . 2014-04-08 10:42 -------- d-----w- c:\users\miro\AppData\Roaming\Milestone
2014-04-08 10:42 . 2014-04-08 10:42 -------- d-----w- c:\programdata\Steam
2014-04-07 21:02 . 2014-04-07 21:03 -------- d-----w- c:\program files (x86)\MXGP
2014-04-01 07:38 . 2010-02-04 08:01 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_4.dll
2014-04-01 07:38 . 2010-02-04 08:01 528216 ----a-w- c:\windows\SysWow64\XAudio2_6.dll
2014-04-01 07:38 . 2010-02-04 08:01 238936 ----a-w- c:\windows\SysWow64\xactengine3_6.dll
2014-04-01 07:38 . 2010-02-04 08:01 22360 ----a-w- c:\windows\SysWow64\X3DAudio1_7.dll
2014-04-01 07:37 . 2014-04-01 07:37 -------- d-----w- c:\program files (x86)\Immanitas Entertainment GmbH
2014-03-31 12:08 . 2014-03-31 12:08 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2014-03-31 12:08 . 2014-03-31 12:08 -------- d-----w- c:\windows\SysWow64\NV
2014-03-31 12:08 . 2014-03-31 12:08 -------- d-----w- c:\windows\system32\NV
2014-03-31 11:58 . 2014-03-31 11:58 -------- d-----w- C:\NVIDIA
2014-03-31 10:24 . 2014-03-31 10:24 -------- d-----w- c:\users\miro\AppData\Local\Intel_Corporation
2014-03-31 10:17 . 2014-03-31 10:17 -------- d-----w- c:\programdata\Age of Empires II HD - Slovencina
2014-03-30 18:09 . 2009-03-16 12:18 174936 ----a-w- c:\windows\system32\xactengine3_4.dll
2014-03-30 17:40 . 2014-04-20 07:20 -------- d-----w- c:\program files (x86)\Activision
2014-03-27 18:04 . 2014-03-27 18:04 -------- d-----w- c:\program files (x86)\Rockstar Games
2014-03-27 17:33 . 2014-03-27 17:42 -------- d-----w- c:\users\miro\AppData\Roaming\Ulozto File Manager
2014-03-27 17:33 . 2014-03-27 17:33 -------- d-----w- c:\program files (x86)\Ulozto File Manager
2014-03-27 16:43 . 2014-03-27 16:43 -------- d-----w- c:\users\miro\AppData\Local\cache
2014-03-27 16:35 . 2014-03-27 16:35 -------- d-----w- c:\program files (x86)\Autodesk
2014-03-26 21:39 . 2014-03-26 21:45 -------- d-----w- c:\programdata\FLEXnet
2014-03-26 21:34 . 2014-03-26 21:34 -------- d-----w- c:\programdata\FARO
2014-03-26 21:30 . 2014-03-26 21:30 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2014-03-26 21:30 . 2014-03-26 21:39 -------- d-----w- c:\users\miro\AppData\Local\Autodesk
2014-03-26 21:29 . 2014-03-27 16:57 -------- d-----w- c:\program files\Autodesk
2014-03-26 21:28 . 2014-03-27 16:57 -------- d-----w- c:\program files (x86)\Common Files\Autodesk Shared
2014-03-26 21:28 . 2010-06-02 03:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2014-03-26 21:28 . 2010-06-02 03:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll
2014-03-26 21:28 . 2010-06-02 03:55 176984 ----a-w- c:\windows\system32\xactengine3_7.dll
2014-03-26 21:28 . 2010-05-26 10:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2014-03-26 21:28 . 2010-05-26 10:41 1907552 ----a-w- c:\windows\system32\d3dcsx_43.dll
2014-03-26 21:19 . 2014-03-27 16:57 -------- d-----w- c:\programdata\Autodesk
2014-03-26 21:19 . 2014-03-27 16:57 -------- d-----w- c:\users\miro\AppData\Roaming\Autodesk
2014-03-26 21:17 . 2014-03-26 21:17 -------- d-----w- C:\Autodesk
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-11 01:02 . 2014-01-15 17:08 90655440 ----a-w- c:\windows\system32\MRT.exe
2014-03-11 07:52 . 2013-09-27 08:53 133928 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2014-03-04 14:35 . 2014-01-18 19:11 947808 ----a-w- c:\windows\system32\nvumdshimx.dll
2014-03-04 14:35 . 2014-01-18 19:11 3093280 ----a-w- c:\windows\system32\nvapi64.dll
2014-03-04 14:35 . 2014-01-18 19:11 174296 ----a-w- c:\windows\system32\nvinitx.dll
2014-03-04 14:35 . 2014-01-18 19:11 148016 ----a-w- c:\windows\SysWow64\nvinit.dll
2014-03-04 13:06 . 2014-01-18 19:13 6714312 ----a-w- c:\windows\system32\nvcpl.dll
2014-03-04 13:06 . 2014-01-18 19:13 3497816 ----a-w- c:\windows\system32\nvsvc64.dll
2014-03-04 13:05 . 2014-01-18 19:13 922968 ----a-w- c:\windows\system32\nvvsvc.exe
2014-03-04 13:05 . 2014-01-18 19:13 64968 ----a-w- c:\windows\system32\nvshext.dll
2014-03-04 13:05 . 2014-01-18 19:13 607064 ----a-w- c:\windows\SysWow64\oemdspif.dll
2014-03-04 13:05 . 2014-01-18 19:13 2558808 ----a-w- c:\windows\system32\nvsvcr.dll
2014-03-04 13:05 . 2014-01-18 19:13 67072 ----a-w- c:\windows\system32\nv3dappshextr.dll
2014-03-04 13:05 . 2014-01-18 19:13 386336 ----a-w- c:\windows\system32\nvmctray.dll
2014-03-04 13:05 . 2014-01-18 19:13 1075032 ----a-w- c:\windows\system32\nv3dappshext.dll
2014-03-04 13:05 . 2014-01-18 19:13 3649185 ----a-w- c:\windows\system32\nvcoproc.bin
2014-03-04 09:17 . 2014-04-10 03:19 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2014-02-21 14:22 . 2014-02-18 08:04 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-02-13 15:54 . 2014-02-13 15:55 19872 ----a-w- c:\windows\system32\LenovoSDKEmSubSystem.dll
2014-02-13 15:54 . 2014-02-13 15:55 39008 ----a-w- c:\windows\system32\drivers\LhdX64.sys
2014-02-13 15:54 . 2011-12-15 13:09 30816 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys
2014-02-07 01:23 . 2014-03-12 05:13 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-02-05 09:31 . 2014-01-18 19:14 1048152 ----a-w- c:\windows\SysWow64\nvspcap.dll
2014-02-05 09:30 . 2014-01-18 19:14 1179576 ----a-w- c:\windows\system32\nvspcap64.dll
2014-02-04 02:32 . 2014-03-12 05:08 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-02-04 02:32 . 2014-03-12 05:08 624128 ----a-w- c:\windows\system32\qedit.dll
2014-02-04 02:04 . 2014-03-12 05:08 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2014-02-04 02:04 . 2014-03-12 05:08 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-01-29 02:32 . 2014-03-12 05:13 484864 ----a-w- c:\windows\system32\wer.dll
2014-01-29 02:06 . 2014-03-12 05:13 381440 ----a-w- c:\windows\SysWow64\wer.dll
2014-01-28 02:32 . 2014-03-12 05:13 228864 ----a-w- c:\windows\system32\wwansvc.dll
2014-01-25 01:58 . 2014-01-25 01:58 34032 ----a-w- c:\windows\system32\drivers\seehcri.sys
2014-01-24 23:19 . 2014-01-24 23:19 268512 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2014-01-24 21:10 . 2009-08-18 11:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2014-01-24 21:10 . 2009-08-18 10:24 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-01-24 19:53 . 2014-01-24 19:53 348160 ----a-w- c:\windows\SysWow64\Msvcr71.dll
2014-01-24 19:53 . 2014-01-24 19:53 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2014-01-24 19:53 . 2014-01-24 19:53 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
2014-03-27 09:09 430440 ----a-w- c:\programdata\ShopperPro\ShopperPro.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-03-12 18:13 1728216 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-03-12 18:13 1728216 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-03-12 18:13 1728216 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bloody2"="c:\program files (x86)\Bloody5\Bloody5\Bloody5.exe" [2014-01-15 14066176]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20924576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-04-11 292848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SPDRIVER_1.35.1.155;SPDRIVER_1.35.1.155;c:\program files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys;c:\program files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys [x]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IntcDAud;Intel(R) Zvuk pre obrazovky;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver;c:\windows\system32\DRIVERS\PcaSp60.sys;c:\windows\SYSNATIVE\DRIVERS\PcaSp60.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S2 aksdf;aksdf;c:\windows\system32\DRIVERS\aksdf.sys;c:\windows\SYSNATIVE\DRIVERS\aksdf.sys [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 UsbService;ASUS Virtual MFP Service;c:\program files (x86)\ASUS\Printer Utilities\UsbService64.exe;c:\program files (x86)\ASUS\Printer Utilities\UsbService64.exe [x]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiVpc.sys [x]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 rtsuvc;Lenovo EasyCamera;c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys;c:\windows\SYSNATIVE\DRIVERS\seehcri.sys [x]
S3 vuhub;Virtual Usb Hub;c:\windows\system32\DRIVERS\vuhub.sys;c:\windows\SYSNATIVE\DRIVERS\vuhub.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-03-12 18:10 2333400 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-03-12 18:10 2333400 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-03-12 18:10 2333400 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-05-28 13545032]
"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2013-05-20 1308232]
"UMonit64"="c:\windows\SysWOW64\UMonit64.exe" [2013-04-09 40960]
"RtsFT"="RTFTrack.exe" [2013-03-15 6346312]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-05-20 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-05-20 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-05-20 444400]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-02-05 1179576]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-02-05 2234144]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 1271072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~4\Office15\EXCEL.EXE/3000
IE: Od&oslať do programu OneNote - c:\progra~1\MICROS~4\Office15\ONBttnIE.dll/105
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
BHO-{11111111-1111-1111-1111-110311551110} - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3741898180-3346804313-1312629632-1000\Software\SecuROM\License information*]
"datasecu"=hex:7c,6c,da,92,2f,16,62,e8,23,3e,bb,12,f6,89,57,4c,aa,46,91,3f,9d,
ac,ef,03,f8,28,86,ed,fb,3a,8c,8b,46,87,99,b4,2a,6e,9d,98,1a,a7,71,c5,b0,54,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
.
**************************************************************************
.
Completion time: 2014-04-23 20:36:34 - machine was rebooted
ComboFix-quarantined-files.txt 2014-04-23 18:36
.
Pre-Run: 298 986 602 496 bytes free
Post-Run: 299 057 532 928 bytes free
.
- - End Of File - - 98623BD996F59C523DA99370239FF9B6
A36C5E4F47E84449FF07ED3517B43A31
ComboFix 14-04-20.01 - miro . 04. 2014 20:20:10.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.7916.6134 [GMT 2:00]
Running from: c:\users\miro\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\Local Settings\Temp
c:\programdata\Roaming
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cigiagpbkapepgklncnajbakkpkopmam_0
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_cigiagpbkapepgklncnajbakkpkopmam_0\26
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\background.html
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\crossriderManifest.json
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\manifest.xml
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins.json
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\1.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\102.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\104.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\13.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\14.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\155.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\17.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\177.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\182.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\183.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\184.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\19.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\195.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\207.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\21.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\217.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\22.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\220.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\223.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\242.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\244.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\246.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\28.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\4.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\47.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\64.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\7.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\72.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\78.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\80.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\9.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\91.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\93.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\plugins\97.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\userCode\background.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\extensionData\userCode\extension.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\chromeCoreFilesIndex.txt
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\icons\actions\1.png
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\icons\icon128.png
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\icons\icon16.png
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\icons\icon48.png
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\cookie.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\chrome.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\message.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\monitor.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\pageAction.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\api\pageActionBG.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\background.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\app_api.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\bg_app_api.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\consts.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\cookie_store.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\crossriderAPI.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\delegate.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\events.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\extensionDataStore.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\installer.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\logFile.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\logging.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\onBGDocumentLoad.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\popupResource\newPopup.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\popupResource\popup.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\reports.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\storageWrapper.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\updateManager.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\util.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\lib\xhr.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\main.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\js\platformVersion.js
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\manifest.json
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cigiagpbkapepgklncnajbakkpkopmam\1.26.253_0\popup.html
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\000005.ldb
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\000015.log
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\CURRENT
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\LOCK
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\LOG
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\LOG.old
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cigiagpbkapepgklncnajbakkpkopmam\MANIFEST-000013
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cigiagpbkapepgklncnajbakkpkopmam_0.localstorage
c:\users\miro\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\miro\AppData\Local\MSGBOX.EXE
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\defaults\preferences\prefs.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\manifest.xml
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins.json
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\1.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\102.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\104.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\13.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\14.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\155.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\16.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\17.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\177.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\182.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\183.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\184.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\195.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\207.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\21.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\217.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\22.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\220.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\223.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\242.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\244.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\246.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\28.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\4.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\47.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\64.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\7.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\72.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\78.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\9.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\91.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\93.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\plugins\98.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\userCode\background.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\extensionData\userCode\extension.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome.manifest
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\asyncDB.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\background.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\browserAction.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\contextMenu.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\dbManager.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\dom_bg.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\fileManager.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\firefox.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\firefoxNotifications.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\firefoxOmnibox.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\message.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\pageAction.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\request.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\tabs.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\webRequest.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\api\windowsMessagingHandler.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\background.html
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\baseObject.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\browser.xul
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\addressBarChangeObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\console.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\consts.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\delegate.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\extensionDataStore.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\folderIOWrapper.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\httpObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\IDBWrapper.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\installer.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\logFile.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\prefs.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\progressListenerObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\registry.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\reloadObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\reports.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\requestObject.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\searchSettings.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\uninstallObserver.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\updateManager.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\utils.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\core\xhr.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\dialog.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\ffCoreFilesIndex.txt
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\main.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\options.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\options.xul
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\platformVersion.js
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\chrome\content\search_dialog.xul
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\install.rdf
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\locale\en-US\translations.dtd
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button1.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button2.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button3.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button4.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\button5.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\crossrider_statusbar.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\icon128.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\icon16.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\icon24.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\icon48.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\panelarrow-up.png
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\popup.html
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\skin.css
c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com\skin\update.css
c:\windows\SysWow64\BReWErS.dll
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_Service KMSELDI
.
.
((((((((((((((((((((((((( Files Created from 2014-03-23 to 2014-04-23 )))))))))))))))))))))))))))))))
.
.
2014-04-23 18:27 . 2014-04-23 18:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-04-23 18:10 . 2014-04-23 18:10 -------- d-----w- C:\rsit
2014-04-23 18:10 . 2014-04-23 18:10 -------- d-----w- c:\program files\trend micro
2014-04-23 18:09 . 2014-04-23 18:09 75888 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3DBCAE19-EE82-468D-9EFD-046A4DF286EC}\offreg.dll
2014-04-23 17:57 . 2014-04-23 17:58 -------- d-----w- C:\FRST
2014-04-23 17:25 . 2014-04-23 17:47 -------- d-----w- c:\program files (x86)\SmartTweak
2014-04-23 17:25 . 2014-04-23 17:43 -------- d-----w- c:\program files (x86)\YouTube Accelerator
2014-04-23 17:25 . 2014-04-23 17:25 -------- d-----w- c:\users\miro\AppData\Local\Installer
2014-04-23 17:25 . 2014-04-23 17:25 -------- d-----w- c:\programdata\ShopperPro
2014-04-23 17:23 . 2014-04-23 17:23 -------- d-----w- c:\users\miro\AppData\Local\CrashRpt
2014-04-23 06:56 . 2014-04-16 10:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3DBCAE19-EE82-468D-9EFD-046A4DF286EC}\mpengine.dll
2014-04-22 06:55 . 2014-04-16 10:22 10651704 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-04-21 12:11 . 2009-03-18 16:35 33856 ---ha-w- c:\windows\system32\hamachi.sys
2014-04-21 12:11 . 2014-04-21 12:11 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2014-04-21 12:11 . 2014-04-23 18:30 -------- d-----w- c:\users\miro\AppData\Local\LogMeIn Hamachi
2014-04-21 12:11 . 2014-04-21 12:11 -------- d-----w- c:\users\miro\AppData\Local\LogMeIn
2014-04-21 12:11 . 2014-04-21 12:11 -------- d-----w- c:\programdata\LogMeIn
2014-04-19 19:00 . 2014-04-19 19:00 -------- d-----w- c:\users\miro\AppData\Local\SKIDROW
2014-04-19 06:36 . 2014-02-21 14:22 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B316E16A-5A63-480D-8387-B77D87FB6486}\gapaengine.dll
2014-04-18 15:14 . 2014-04-18 15:15 -------- d-----w- c:\users\miro\AppData\Local\Arma 3
2014-04-18 15:14 . 2014-04-18 15:14 -------- d-----w- c:\programdata\Bohemia Interactive
2014-04-18 11:14 . 2014-04-18 11:31 -------- d-----w- c:\program files (x86)\Arma 3
2014-04-17 09:07 . 2010-02-04 08:01 78680 ----a-w- c:\windows\system32\XAPOFX1_4.dll
2014-04-17 09:07 . 2010-02-04 08:01 530776 ----a-w- c:\windows\system32\XAudio2_6.dll
2014-04-17 09:07 . 2010-02-04 08:01 176984 ----a-w- c:\windows\system32\xactengine3_6.dll
2014-04-17 08:45 . 2014-04-17 08:45 -------- d-----w- C:\Hry
2014-04-17 06:45 . 2014-04-22 15:12 -------- d-----w- c:\users\miro\AppData\Roaming\ProfiCAD
2014-04-17 06:45 . 2014-04-17 06:53 -------- d-----w- c:\program files (x86)\ProfiCAD
2014-04-17 06:30 . 2014-04-17 06:30 -------- d-----w- c:\users\miro\AppData\Local\Diagnostics
2014-04-17 06:29 . 1999-11-12 02:11 183808 ----a-w- c:\windows\SysWow64\bdeadmin.cpl
2014-04-17 06:29 . 2014-04-17 06:29 -------- d-----w- c:\program files (x86)\Common Files\Borland Shared
2014-04-17 06:29 . 2014-04-17 06:29 -------- d-----w- c:\program files (x86)\Borland
2014-04-17 06:28 . 2006-10-18 17:12 191488 ----a-w- c:\windows\SysWow64\hlvdd.dll
2014-04-17 06:28 . 2006-12-04 08:44 314368 ----a-w- c:\windows\system32\drivers\hardlock.sys
2014-04-17 06:28 . 2006-12-13 16:14 65024 ----a-w- c:\windows\system32\drivers\aksdf.sys
2014-04-17 06:28 . 2014-04-17 06:28 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2014-04-17 06:27 . 2014-04-17 06:27 -------- d-----w- c:\program files (x86)\aucotec
2014-04-17 06:23 . 2014-04-17 06:23 -------- d-----w- c:\program files (x86)\MSSOAP
2014-04-17 06:22 . 2008-11-15 06:50 209608 ------w- c:\windows\SysWow64\Tabctl32.ocx
2014-04-17 06:22 . 2003-11-10 16:14 729088 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2014-04-17 06:22 . 2003-11-10 16:13 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2014-04-17 06:22 . 2003-11-10 16:12 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2014-04-17 06:22 . 2003-11-10 16:12 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2014-04-17 06:22 . 2003-11-10 16:11 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2014-04-17 06:22 . 2014-04-17 06:22 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2014-04-17 06:22 . 2014-04-17 06:22 188548 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2014-04-17 05:57 . 2014-04-17 05:57 -------- d-----w- c:\users\miro\Prozik
2014-04-17 05:51 . 2014-04-17 06:41 -------- d-----w- c:\users\miro\SICHR14
2014-04-17 05:45 . 2014-04-17 05:57 -------- d-----w- c:\program files (x86)\OEZ
2014-04-15 17:14 . 2014-04-23 17:52 -------- d-----w- c:\users\miro\AppData\Roaming\uTorrent
2014-04-15 10:06 . 2010-09-07 12:27 38912 ----a-w- c:\windows\system32\drivers\PcaSp60.sys
2014-04-15 10:05 . 2006-11-28 19:46 41280 ----a-w- c:\windows\SysWow64\drivers\PCASp50a64.sys
2014-04-15 10:05 . 2010-09-07 12:27 38912 ----a-w- c:\windows\SysWow64\drivers\PcaSp60.sys
2014-04-15 10:05 . 2006-11-28 19:46 52800 ----a-w- c:\windows\SysWow64\drivers\PCASp50.sys
2014-04-15 10:05 . 2003-04-21 19:46 61440 ----a-w- c:\windows\SysWow64\ASIW32N50.dll
2014-04-15 10:05 . 2002-09-10 17:35 16302 ----a-w- c:\windows\SysWow64\ASINDIS5.sys
2014-04-15 10:05 . 2001-04-16 03:48 15577 ----a-w- c:\windows\SysWow64\ASINDIS3.vxd
2014-04-15 10:05 . 2014-04-15 10:05 -------- d-----w- c:\users\miro\AppData\Roaming\InstallShield
2014-04-14 12:50 . 2014-03-06 09:31 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-04-10 03:24 . 2014-02-04 02:35 190912 ----a-w- c:\windows\system32\drivers\storport.sys
2014-04-10 03:24 . 2014-02-04 02:35 274880 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-04-10 03:24 . 2014-02-04 02:35 27584 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2014-04-10 03:24 . 2014-02-04 02:28 2048 ----a-w- c:\windows\system32\iologmsg.dll
2014-04-10 03:24 . 2014-02-04 02:00 2048 ----a-w- c:\windows\SysWow64\iologmsg.dll
2014-04-10 03:19 . 2014-03-04 09:44 362496 ----a-w- c:\windows\system32\wow64win.dll
2014-04-10 03:19 . 2014-03-04 09:44 243712 ----a-w- c:\windows\system32\wow64.dll
2014-04-10 03:19 . 2014-03-04 09:44 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2014-04-10 03:19 . 2014-03-04 09:44 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2014-04-10 03:19 . 2014-03-04 09:44 1163264 ----a-w- c:\windows\system32\kernel32.dll
2014-04-10 03:19 . 2014-03-04 09:17 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2014-04-10 03:19 . 2014-03-04 09:16 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2014-04-10 03:19 . 2014-03-04 09:16 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2014-04-10 03:19 . 2014-03-04 08:09 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2014-04-10 03:19 . 2014-03-04 08:09 2048 ----a-w- c:\windows\SysWow64\user.exe
2014-04-10 03:19 . 2014-01-24 02:37 1684928 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-04-09 19:03 . 2014-04-09 19:03 -------- d-----w- c:\users\miro\AppData\Roaming\Kastner software
2014-04-09 19:02 . 2014-04-09 19:02 -------- d-----w- c:\programdata\KASTNER software
2014-04-09 19:02 . 2014-04-09 19:02 -------- d-----w- c:\program files (x86)\KASTNER software
2014-04-08 12:51 . 2014-04-08 12:51 -------- d-----w- c:\program files (x86)\MC2
2014-04-08 12:50 . 2001-09-05 03:18 77824 ----a-w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
2014-04-08 12:50 . 2001-09-05 03:18 225280 ------w- c:\program files (x86)\Common Files\InstallShield\IScript\IScript.dll
2014-04-08 12:50 . 2001-09-05 03:14 176128 ------w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2014-04-08 12:50 . 2001-09-05 03:13 32768 ------w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2014-04-08 12:50 . 2000-01-04 05:39 212992 ------w- c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
2014-04-08 12:31 . 2014-04-08 12:31 -------- d-----w- c:\users\miro\AppData\Local\Activision
2014-04-08 10:42 . 2014-04-08 10:42 -------- d-----w- c:\users\miro\AppData\Roaming\Milestone
2014-04-08 10:42 . 2014-04-08 10:42 -------- d-----w- c:\programdata\Steam
2014-04-07 21:02 . 2014-04-07 21:03 -------- d-----w- c:\program files (x86)\MXGP
2014-04-01 07:38 . 2010-02-04 08:01 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_4.dll
2014-04-01 07:38 . 2010-02-04 08:01 528216 ----a-w- c:\windows\SysWow64\XAudio2_6.dll
2014-04-01 07:38 . 2010-02-04 08:01 238936 ----a-w- c:\windows\SysWow64\xactengine3_6.dll
2014-04-01 07:38 . 2010-02-04 08:01 22360 ----a-w- c:\windows\SysWow64\X3DAudio1_7.dll
2014-04-01 07:37 . 2014-04-01 07:37 -------- d-----w- c:\program files (x86)\Immanitas Entertainment GmbH
2014-03-31 12:08 . 2014-03-31 12:08 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2014-03-31 12:08 . 2014-03-31 12:08 -------- d-----w- c:\windows\SysWow64\NV
2014-03-31 12:08 . 2014-03-31 12:08 -------- d-----w- c:\windows\system32\NV
2014-03-31 11:58 . 2014-03-31 11:58 -------- d-----w- C:\NVIDIA
2014-03-31 10:24 . 2014-03-31 10:24 -------- d-----w- c:\users\miro\AppData\Local\Intel_Corporation
2014-03-31 10:17 . 2014-03-31 10:17 -------- d-----w- c:\programdata\Age of Empires II HD - Slovencina
2014-03-30 18:09 . 2009-03-16 12:18 174936 ----a-w- c:\windows\system32\xactengine3_4.dll
2014-03-30 17:40 . 2014-04-20 07:20 -------- d-----w- c:\program files (x86)\Activision
2014-03-27 18:04 . 2014-03-27 18:04 -------- d-----w- c:\program files (x86)\Rockstar Games
2014-03-27 17:33 . 2014-03-27 17:42 -------- d-----w- c:\users\miro\AppData\Roaming\Ulozto File Manager
2014-03-27 17:33 . 2014-03-27 17:33 -------- d-----w- c:\program files (x86)\Ulozto File Manager
2014-03-27 16:43 . 2014-03-27 16:43 -------- d-----w- c:\users\miro\AppData\Local\cache
2014-03-27 16:35 . 2014-03-27 16:35 -------- d-----w- c:\program files (x86)\Autodesk
2014-03-26 21:39 . 2014-03-26 21:45 -------- d-----w- c:\programdata\FLEXnet
2014-03-26 21:34 . 2014-03-26 21:34 -------- d-----w- c:\programdata\FARO
2014-03-26 21:30 . 2014-03-26 21:30 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2014-03-26 21:30 . 2014-03-26 21:39 -------- d-----w- c:\users\miro\AppData\Local\Autodesk
2014-03-26 21:29 . 2014-03-27 16:57 -------- d-----w- c:\program files\Autodesk
2014-03-26 21:28 . 2014-03-27 16:57 -------- d-----w- c:\program files (x86)\Common Files\Autodesk Shared
2014-03-26 21:28 . 2010-06-02 03:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2014-03-26 21:28 . 2010-06-02 03:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll
2014-03-26 21:28 . 2010-06-02 03:55 176984 ----a-w- c:\windows\system32\xactengine3_7.dll
2014-03-26 21:28 . 2010-05-26 10:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2014-03-26 21:28 . 2010-05-26 10:41 1907552 ----a-w- c:\windows\system32\d3dcsx_43.dll
2014-03-26 21:19 . 2014-03-27 16:57 -------- d-----w- c:\programdata\Autodesk
2014-03-26 21:19 . 2014-03-27 16:57 -------- d-----w- c:\users\miro\AppData\Roaming\Autodesk
2014-03-26 21:17 . 2014-03-26 21:17 -------- d-----w- C:\Autodesk
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-11 01:02 . 2014-01-15 17:08 90655440 ----a-w- c:\windows\system32\MRT.exe
2014-03-11 07:52 . 2013-09-27 08:53 133928 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2014-03-04 14:35 . 2014-01-18 19:11 947808 ----a-w- c:\windows\system32\nvumdshimx.dll
2014-03-04 14:35 . 2014-01-18 19:11 3093280 ----a-w- c:\windows\system32\nvapi64.dll
2014-03-04 14:35 . 2014-01-18 19:11 174296 ----a-w- c:\windows\system32\nvinitx.dll
2014-03-04 14:35 . 2014-01-18 19:11 148016 ----a-w- c:\windows\SysWow64\nvinit.dll
2014-03-04 13:06 . 2014-01-18 19:13 6714312 ----a-w- c:\windows\system32\nvcpl.dll
2014-03-04 13:06 . 2014-01-18 19:13 3497816 ----a-w- c:\windows\system32\nvsvc64.dll
2014-03-04 13:05 . 2014-01-18 19:13 922968 ----a-w- c:\windows\system32\nvvsvc.exe
2014-03-04 13:05 . 2014-01-18 19:13 64968 ----a-w- c:\windows\system32\nvshext.dll
2014-03-04 13:05 . 2014-01-18 19:13 607064 ----a-w- c:\windows\SysWow64\oemdspif.dll
2014-03-04 13:05 . 2014-01-18 19:13 2558808 ----a-w- c:\windows\system32\nvsvcr.dll
2014-03-04 13:05 . 2014-01-18 19:13 67072 ----a-w- c:\windows\system32\nv3dappshextr.dll
2014-03-04 13:05 . 2014-01-18 19:13 386336 ----a-w- c:\windows\system32\nvmctray.dll
2014-03-04 13:05 . 2014-01-18 19:13 1075032 ----a-w- c:\windows\system32\nv3dappshext.dll
2014-03-04 13:05 . 2014-01-18 19:13 3649185 ----a-w- c:\windows\system32\nvcoproc.bin
2014-03-04 09:17 . 2014-04-10 03:19 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2014-02-21 14:22 . 2014-02-18 08:04 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-02-13 15:54 . 2014-02-13 15:55 19872 ----a-w- c:\windows\system32\LenovoSDKEmSubSystem.dll
2014-02-13 15:54 . 2014-02-13 15:55 39008 ----a-w- c:\windows\system32\drivers\LhdX64.sys
2014-02-13 15:54 . 2011-12-15 13:09 30816 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys
2014-02-07 01:23 . 2014-03-12 05:13 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-02-05 09:31 . 2014-01-18 19:14 1048152 ----a-w- c:\windows\SysWow64\nvspcap.dll
2014-02-05 09:30 . 2014-01-18 19:14 1179576 ----a-w- c:\windows\system32\nvspcap64.dll
2014-02-04 02:32 . 2014-03-12 05:08 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2014-02-04 02:32 . 2014-03-12 05:08 624128 ----a-w- c:\windows\system32\qedit.dll
2014-02-04 02:04 . 2014-03-12 05:08 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2014-02-04 02:04 . 2014-03-12 05:08 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-01-29 02:32 . 2014-03-12 05:13 484864 ----a-w- c:\windows\system32\wer.dll
2014-01-29 02:06 . 2014-03-12 05:13 381440 ----a-w- c:\windows\SysWow64\wer.dll
2014-01-28 02:32 . 2014-03-12 05:13 228864 ----a-w- c:\windows\system32\wwansvc.dll
2014-01-25 01:58 . 2014-01-25 01:58 34032 ----a-w- c:\windows\system32\drivers\seehcri.sys
2014-01-24 23:19 . 2014-01-24 23:19 268512 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2014-01-24 21:10 . 2009-08-18 11:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2014-01-24 21:10 . 2009-08-18 10:24 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-01-24 19:53 . 2014-01-24 19:53 348160 ----a-w- c:\windows\SysWow64\Msvcr71.dll
2014-01-24 19:53 . 2014-01-24 19:53 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2014-01-24 19:53 . 2014-01-24 19:53 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
2014-03-27 09:09 430440 ----a-w- c:\programdata\ShopperPro\ShopperPro.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-03-12 18:13 1728216 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-03-12 18:13 1728216 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-03-12 18:13 1728216 ----a-w- c:\progra~2\MIF5BA~1\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bloody2"="c:\program files (x86)\Bloody5\Bloody5\Bloody5.exe" [2014-01-15 14066176]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2014-02-10 20924576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-04-11 292848]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SPDRIVER_1.35.1.155;SPDRIVER_1.35.1.155;c:\program files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys;c:\program files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys [x]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IntcDAud;Intel(R) Zvuk pre obrazovky;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver;c:\windows\system32\DRIVERS\PcaSp60.sys;c:\windows\SYSNATIVE\DRIVERS\PcaSp60.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S2 aksdf;aksdf;c:\windows\system32\DRIVERS\aksdf.sys;c:\windows\SYSNATIVE\DRIVERS\aksdf.sys [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 UsbService;ASUS Virtual MFP Service;c:\program files (x86)\ASUS\Printer Utilities\UsbService64.exe;c:\program files (x86)\ASUS\Printer Utilities\UsbService64.exe [x]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiVpc.sys [x]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 rtsuvc;Lenovo EasyCamera;c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys;c:\windows\SYSNATIVE\DRIVERS\seehcri.sys [x]
S3 vuhub;Virtual Usb Hub;c:\windows\system32\DRIVERS\vuhub.sys;c:\windows\SYSNATIVE\DRIVERS\vuhub.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-03-12 18:10 2333400 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-03-12 18:10 2333400 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-03-12 18:10 2333400 ----a-w- c:\progra~1\MICROS~4\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-05-28 13545032]
"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2013-05-20 1308232]
"UMonit64"="c:\windows\SysWOW64\UMonit64.exe" [2013-04-09 40960]
"RtsFT"="RTFTrack.exe" [2013-03-15 6346312]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-05-20 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-05-20 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-05-20 444400]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-02-05 1179576]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-02-05 2234144]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 1271072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~4\Office15\EXCEL.EXE/3000
IE: Od&oslať do programu OneNote - c:\progra~1\MICROS~4\Office15\ONBttnIE.dll/105
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
BHO-{11111111-1111-1111-1111-110311551110} - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3741898180-3346804313-1312629632-1000\Software\SecuROM\License information*]
"datasecu"=hex:7c,6c,da,92,2f,16,62,e8,23,3e,bb,12,f6,89,57,4c,aa,46,91,3f,9d,
ac,ef,03,f8,28,86,ed,fb,3a,8c,8b,46,87,99,b4,2a,6e,9d,98,1a,a7,71,c5,b0,54,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
.
**************************************************************************
.
Completion time: 2014-04-23 20:36:34 - machine was rebooted
ComboFix-quarantined-files.txt 2014-04-23 18:36
.
Pre-Run: 298 986 602 496 bytes free
Post-Run: 299 057 532 928 bytes free
.
- - End Of File - - 98623BD996F59C523DA99370239FF9B6
A36C5E4F47E84449FF07ED3517B43A31
Re: Prosím o kontrolu logu- pomalé PC
Zdravim 
Nez zacneme cistit...
Proc jste spoustel ComboFix? Je to poruseni pravidel fora! Vy s nim umite zachazet? Sepsat pro nej skript na docisteni? Jestli se to bude opakovat, bude pomoc odmitnuta
A druha vec. Pokud budete chtit kontrolu nekdy priste, dejte sem jen jeden log, tedy bud RSIT, nebo FRST. Kdyz si takhle hned odpovite, zbytecne si tim oddalite to, ze se vas nekdo ujme. Hledame prednostne temata bez odpovedi. Vy jste si odpovedel hned 2x, takze to vypadalo, jako by to uz nekdo resil
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Nez zacneme cistit...
Proc jste spoustel ComboFix? Je to poruseni pravidel fora! Vy s nim umite zachazet? Sepsat pro nej skript na docisteni? Jestli se to bude opakovat, bude pomoc odmitnuta
A druha vec. Pokud budete chtit kontrolu nekdy priste, dejte sem jen jeden log, tedy bud RSIT, nebo FRST. Kdyz si takhle hned odpovite, zbytecne si tim oddalite to, ze se vas nekdo ujme. Hledame prednostne temata bez odpovedi. Vy jste si odpovedel hned 2x, takze to vypadalo, jako by to uz nekdo resil
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu- pomalé PC
Zdravím
Ďakujem za odpoveď. No viete vy tu toho máte veľa tak som vám chcel uľachčiť prácu a takto to dopadlo... no moja chyba pardon.
Tady je LOG:
# AdwCleaner v3.202 - Report created 26/04/2014 at 10:02:16
# Updated 23/04/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : miro - NOTEBOOK
# Running from : C:\Users\miro\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\ShopperPro
Folder Deleted : C:\Program Files (x86)\GreenTree Applications
Folder Deleted : C:\Program Files (x86)\YouTube Accelerator
Folder Deleted : C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
Folder Deleted : C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com
File Deleted : C:\Windows\System32\Tasks\ShopperPro
File Deleted : C:\Windows\System32\Tasks\ShopperProJSUpd
File Deleted : C:\Windows\System32\Tasks\SPDriver
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344554410}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444824492}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKCU\Software\Goobzo
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\smarttweak
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\Software\installedbrowserextensions
Key Deleted : [x64] HKLM\SOFTWARE\installedbrowserextensions
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17041
-\\ Mozilla Firefox v27.0.1 (cs)
[ File : C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\prefs.js ]
-\\ Google Chrome v
[ File : C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Startup_urls] : hxxp://mystart.incredibar.com/mb201?a=6OyU37udsR&i=26
Deleted [Startup_urls] : hxxp://home.sweetim.com/?crg=3.1010000.10005&barid={61BAE0CC-410C-11E2-AACE-005056C00008}
Deleted [Extension] : blbkdnmdcafmfhinpmnlhhddbepgkeaa
*************************
AdwCleaner[R0].txt - [4490 octets] - [26/04/2014 10:01:36]
AdwCleaner[S0].txt - [4189 octets] - [26/04/2014 10:02:16]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4249 octets] ##########
Ďakujem za odpoveď. No viete vy tu toho máte veľa tak som vám chcel uľachčiť prácu a takto to dopadlo... no moja chyba pardon.
Tady je LOG:
# AdwCleaner v3.202 - Report created 26/04/2014 at 10:02:16
# Updated 23/04/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : miro - NOTEBOOK
# Running from : C:\Users\miro\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\ShopperPro
Folder Deleted : C:\Program Files (x86)\GreenTree Applications
Folder Deleted : C:\Program Files (x86)\YouTube Accelerator
Folder Deleted : C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
Folder Deleted : C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\Extensions\143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com
File Deleted : C:\Windows\System32\Tasks\ShopperPro
File Deleted : C:\Windows\System32\Tasks\ShopperProJSUpd
File Deleted : C:\Windows\System32\Tasks\SPDriver
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344554410}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444824492}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411821192}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422822292}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355555510}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366556610}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411821192}
Key Deleted : HKCU\Software\Goobzo
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\smarttweak
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\Software\installedbrowserextensions
Key Deleted : [x64] HKLM\SOFTWARE\installedbrowserextensions
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17041
-\\ Mozilla Firefox v27.0.1 (cs)
[ File : C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default\prefs.js ]
-\\ Google Chrome v
[ File : C:\Users\miro\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted [Startup_urls] : hxxp://mystart.incredibar.com/mb201?a=6OyU37udsR&i=26
Deleted [Startup_urls] : hxxp://home.sweetim.com/?crg=3.1010000.10005&barid={61BAE0CC-410C-11E2-AACE-005056C00008}
Deleted [Extension] : blbkdnmdcafmfhinpmnlhhddbepgkeaa
*************************
AdwCleaner[R0].txt - [4490 octets] - [26/04/2014 10:01:36]
AdwCleaner[S0].txt - [4189 octets] - [26/04/2014 10:02:16]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4249 octets] ##########
Re: Prosím o kontrolu logu- pomalé PC
Omlouvat se nemusite, uskodil jste vlastne hlavne sam sobe 
Ale priste uz budete vedet a vse pujde jako po masle 
Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Ale priste uz budete vedet a vse pujde jako po masle Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu- pomalé PC
tady je log
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 26. 4. 2014
Scan Time: 10:54:45
Logfile: log.txt
Administrator: Yes
Version: 2.00.1.1004
Malware Database: v2014.03.04.09
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: miro
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 244580
Time Elapsed: 24 min, 33 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 5
PUP.Optional.iWebar.A, HKLM\SOFTWARE\WOW6432NODE\iWebar, , [64e5de210e6c64d263585e5429da9769],
PUP.Optional.Sense.A, HKLM\SOFTWARE\WOW6432NODE\SENSE\Firefox, , [8bbe15eae59542f43abe9ff1946eca36],
PUP.Optional.Sense.A, HKLM\SOFTWARE\WOW6432NODE\SENSE\IE, , [40097b840872e45262978010b0529b65],
PUP.Optional.YouTubeAccelerator.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GOOBZO\YouTube Accelerator, , [193066995228f244c697a51b41c2b050],
PUP.Optional.iWebar.A, HKU\S-1-5-21-3741898180-3346804313-1312629632-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [c88152adfd7d47ef7037c0cf986a659b],
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
PUP.Optional.Spigot.A, C:\ProgramData\YTD Video Downloader\ytd_installer.exe, , [f25742bd601a310575ef0470f40c0df3],
Physical Sectors: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 26. 4. 2014
Scan Time: 10:54:45
Logfile: log.txt
Administrator: Yes
Version: 2.00.1.1004
Malware Database: v2014.03.04.09
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: miro
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 244580
Time Elapsed: 24 min, 33 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 5
PUP.Optional.iWebar.A, HKLM\SOFTWARE\WOW6432NODE\iWebar, , [64e5de210e6c64d263585e5429da9769],
PUP.Optional.Sense.A, HKLM\SOFTWARE\WOW6432NODE\SENSE\Firefox, , [8bbe15eae59542f43abe9ff1946eca36],
PUP.Optional.Sense.A, HKLM\SOFTWARE\WOW6432NODE\SENSE\IE, , [40097b840872e45262978010b0529b65],
PUP.Optional.YouTubeAccelerator.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GOOBZO\YouTube Accelerator, , [193066995228f244c697a51b41c2b050],
PUP.Optional.iWebar.A, HKU\S-1-5-21-3741898180-3346804313-1312629632-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\iWebar, , [c88152adfd7d47ef7037c0cf986a659b],
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 1
PUP.Optional.Spigot.A, C:\ProgramData\YTD Video Downloader\ytd_installer.exe, , [f25742bd601a310575ef0470f40c0df3],
Physical Sectors: 0
(No malicious items detected)
(end)
Re: Prosím o kontrolu logu- pomalé PC
Vsechno nechte smazat, pak MBAM odinstalujte. Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu- pomalé PC
Tak tady je LOG:
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spustené v : Normálny režim
Užívateľ : miro [Práva Správcu]
Režim : Kontrola -- Dátum : 04/26/2014 23:35:01
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 5 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Run : RtsFT (RTFTrack.exe [7]) -> NÁJDENÉ
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NÁJDENÉ
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> NÁJDENÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NÁJDENÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ
¤¤¤ naplánované úlohy : 2 ¤¤¤
[V1][ROGUE ST] f5758e2c-ba15-4a45-8d17-109e967c1ec5-4.job : C:\Program Files (x86)\Sense\f5758e2c-ba15-4a45-8d17-109e967c1ec5-4.exe - /CBYeRQfO /VsppdiEA='Sense' /REOUZ='C:\Program Files (x86)\Sense\48292.xpi' /iXjAjuzsR=48292 /yffTBbgpE='000805' /LLJTZYbC='0' /JatUFxD='eyJkYXRhIjp7ImRhdGUiOiJFNE53c210eWNBYzEsYjU5N2Q5YWYtMGYzMS00YjFhLWIwMTctZjRkOWQzNzFjMDRiLCIsInVucSI6ImI1OTdkOWFmLTBmMzEtNGIxYS1iMDE3LWY0ZDlkMzcxYzA0YiJ9fQ==' /xaveIl=43CE94B21DD240BA8F68B988E33279ECIE /chAFN=d4607cf2771c2219e910183d811e0edc /FQZXUweH=1_34_3_28 /ojOrF=1.34.3.28 /WRAdpNs=1398281111 /EWhmCkV=hxxp://stats.clientdemocloud.com /kWVPIk=hxxp://errors.clientdemocloud.com /SxUmr=300 /jWhVr=143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com /rOXUiLeS=0.94 /QFwRu=a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292 /bbqduSCVG=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/48292.rdf /jjpRE='Sense' /lxrUUCxwm='.' /PUOHQKO='Object Browser' /PPQqwxZND=ie /HXSjqL /szOxixWE /zadGgJz /IttjbOIEV='hxxp://update.clientdemocloud.com/ff_agent_updates/{CAMP_ID}/update.json' /WYuIIWBSg='task' /uYGIqcE='' [x][x][x][x][x][x][x][x][x][x][x] -> NÁJDENÉ
[V2][ROGUE ST] f5758e2c-ba15-4a45-8d17-109e967c1ec5-4 : C:\Program Files (x86)\Sense\f5758e2c-ba15-4a45-8d17-109e967c1ec5-4.exe - /CBYeRQfO /VsppdiEA='Sense' /REOUZ='C:\Program Files (x86)\Sense\48292.xpi' /iXjAjuzsR=48292 /yffTBbgpE='000805' /LLJTZYbC='0' /JatUFxD='eyJkYXRhIjp7ImRhdGUiOiJFNE53c210eWNBYzEsYjU5N2Q5YWYtMGYzMS00YjFhLWIwMTctZjRkOWQzNzFjMDRiLCIsInVucSI6ImI1OTdkOWFmLTBmMzEtNGIxYS1iMDE3LWY0ZDlkMzcxYzA0YiJ9fQ==' /xaveIl=43CE94B21DD240BA8F68B988E33279ECIE /chAFN=d4607cf2771c2219e910183d811e0edc /FQZXUweH=1_34_3_28 /ojOrF=1.34.3.28 /WRAdpNs=1398281111 /EWhmCkV=hxxp://stats.clientdemocloud.com /kWVPIk=hxxp://errors.clientdemocloud.com /SxUmr=300 /jWhVr=143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com /rOXUiLeS=0.94 /QFwRu=a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292 /bbqduSCVG=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/48292.rdf /jjpRE='Sense' /lxrUUCxwm='.' /PUOHQKO='Object Browser' /PPQqwxZND=ie /HXSjqL /szOxixWE /zadGgJz /IttjbOIEV='hxxp://update.clientdemocloud.com/ff_agent_updates/{CAMP_ID}/update.json' /WYuIIWBSg='task' /uYGIqcE='' [x][x][x][x][x][x][x][x][x][x][x] -> NÁJDENÉ
¤¤¤ spustenie položky : 0 ¤¤¤
¤¤¤ webové prehliadače : 0 ¤¤¤
¤¤¤ Browser Addons : 1 ¤¤¤
[FF][PUP] 5l0ulx2n.default : Shopper-Pro
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : PUP ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000LM014-1EJ164 ATA Device +++++
--- User ---
[MBR] 16b6595a4c3dfb8108cc947c110298ec
[BSP] dbcf146c463bbc7c9a28454074d03841 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 2048 | Size: 1000 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2050048 | Size: 480432 MB
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 985974784 | Size: 471435 MB
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 1951473664 | Size: 1000 MB
User = LL1 ... OK!
User = LL2 ... OK!
Dokončené : << RKreport[0]_S_04262014_233501.txt >>
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spustené v : Normálny režim
Užívateľ : miro [Práva Správcu]
Režim : Kontrola -- Dátum : 04/26/2014 23:35:01
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 5 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Run : RtsFT (RTFTrack.exe [7]) -> NÁJDENÉ
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NÁJDENÉ
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> NÁJDENÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NÁJDENÉ
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NÁJDENÉ
¤¤¤ naplánované úlohy : 2 ¤¤¤
[V1][ROGUE ST] f5758e2c-ba15-4a45-8d17-109e967c1ec5-4.job : C:\Program Files (x86)\Sense\f5758e2c-ba15-4a45-8d17-109e967c1ec5-4.exe - /CBYeRQfO /VsppdiEA='Sense' /REOUZ='C:\Program Files (x86)\Sense\48292.xpi' /iXjAjuzsR=48292 /yffTBbgpE='000805' /LLJTZYbC='0' /JatUFxD='eyJkYXRhIjp7ImRhdGUiOiJFNE53c210eWNBYzEsYjU5N2Q5YWYtMGYzMS00YjFhLWIwMTctZjRkOWQzNzFjMDRiLCIsInVucSI6ImI1OTdkOWFmLTBmMzEtNGIxYS1iMDE3LWY0ZDlkMzcxYzA0YiJ9fQ==' /xaveIl=43CE94B21DD240BA8F68B988E33279ECIE /chAFN=d4607cf2771c2219e910183d811e0edc /FQZXUweH=1_34_3_28 /ojOrF=1.34.3.28 /WRAdpNs=1398281111 /EWhmCkV=hxxp://stats.clientdemocloud.com /kWVPIk=hxxp://errors.clientdemocloud.com /SxUmr=300 /jWhVr=143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com /rOXUiLeS=0.94 /QFwRu=a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292 /bbqduSCVG=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/48292.rdf /jjpRE='Sense' /lxrUUCxwm='.' /PUOHQKO='Object Browser' /PPQqwxZND=ie /HXSjqL /szOxixWE /zadGgJz /IttjbOIEV='hxxp://update.clientdemocloud.com/ff_agent_updates/{CAMP_ID}/update.json' /WYuIIWBSg='task' /uYGIqcE='' [x][x][x][x][x][x][x][x][x][x][x] -> NÁJDENÉ
[V2][ROGUE ST] f5758e2c-ba15-4a45-8d17-109e967c1ec5-4 : C:\Program Files (x86)\Sense\f5758e2c-ba15-4a45-8d17-109e967c1ec5-4.exe - /CBYeRQfO /VsppdiEA='Sense' /REOUZ='C:\Program Files (x86)\Sense\48292.xpi' /iXjAjuzsR=48292 /yffTBbgpE='000805' /LLJTZYbC='0' /JatUFxD='eyJkYXRhIjp7ImRhdGUiOiJFNE53c210eWNBYzEsYjU5N2Q5YWYtMGYzMS00YjFhLWIwMTctZjRkOWQzNzFjMDRiLCIsInVucSI6ImI1OTdkOWFmLTBmMzEtNGIxYS1iMDE3LWY0ZDlkMzcxYzA0YiJ9fQ==' /xaveIl=43CE94B21DD240BA8F68B988E33279ECIE /chAFN=d4607cf2771c2219e910183d811e0edc /FQZXUweH=1_34_3_28 /ojOrF=1.34.3.28 /WRAdpNs=1398281111 /EWhmCkV=hxxp://stats.clientdemocloud.com /kWVPIk=hxxp://errors.clientdemocloud.com /SxUmr=300 /jWhVr=143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com /rOXUiLeS=0.94 /QFwRu=a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292 /bbqduSCVG=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/48292.rdf /jjpRE='Sense' /lxrUUCxwm='.' /PUOHQKO='Object Browser' /PPQqwxZND=ie /HXSjqL /szOxixWE /zadGgJz /IttjbOIEV='hxxp://update.clientdemocloud.com/ff_agent_updates/{CAMP_ID}/update.json' /WYuIIWBSg='task' /uYGIqcE='' [x][x][x][x][x][x][x][x][x][x][x] -> NÁJDENÉ
¤¤¤ spustenie položky : 0 ¤¤¤
¤¤¤ webové prehliadače : 0 ¤¤¤
¤¤¤ Browser Addons : 1 ¤¤¤
[FF][PUP] 5l0ulx2n.default : Shopper-Pro
¤¤¤ Zvláštne súbory / Adresáre: ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : PUP ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000LM014-1EJ164 ATA Device +++++
--- User ---
[MBR] 16b6595a4c3dfb8108cc947c110298ec
[BSP] dbcf146c463bbc7c9a28454074d03841 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 2048 | Size: 1000 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2050048 | Size: 480432 MB
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 985974784 | Size: 471435 MB
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 1951473664 | Size: 1000 MB
User = LL1 ... OK!
User = LL2 ... OK!
Dokončené : << RKreport[0]_S_04262014_233501.txt >>
Re: Prosím o kontrolu logu- pomalé PC
Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu- pomalé PC
Dal som zmazať a reštartoval sa mi notebook, potom som to otvoril a log tam nebol žiadny, dal som prehľadať znova a už to nič nenašlo tak som urobil aspoň ten host
log tady:
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spustené v : Normálny režim
Užívateľ : miro [Práva Správcu]
Režim : Oprava HOSTS -- Dátum : 04/27/2014 13:39:31
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 0 ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : PUP ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončené : << RKreport[0]_H_04272014_133931.txt >>
RKreport[0]_D_04272014_133606.txt;RKreport[0]_D_04272014_133809.txt;RKreport[0]_H_04272014_133635.txt
RKreport[0]_S_04262014_233501.txt;RKreport[0]_S_04272014_133802.txt
log tady:
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com
Operačný systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spustené v : Normálny režim
Užívateľ : miro [Práva Správcu]
Režim : Oprava HOSTS -- Dátum : 04/27/2014 13:39:31
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy : 0 ¤¤¤
¤¤¤ Záznamy Registrov : 0 ¤¤¤
¤¤¤ Ovládač : [NENAHRATÉ 0x0] ¤¤¤
¤¤¤ Vonkajšie Hives: ¤¤¤
¤¤¤ Nákaza : PUP ¤¤¤
¤¤¤ Súbor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončené : << RKreport[0]_H_04272014_133931.txt >>
RKreport[0]_D_04272014_133606.txt;RKreport[0]_D_04272014_133809.txt;RKreport[0]_H_04272014_133635.txt
RKreport[0]_S_04262014_233501.txt;RKreport[0]_S_04272014_133802.txt
Re: Prosím o kontrolu logu- pomalé PC
Dejte novy log z RSIT
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu- pomalé PC
Prosím:
Logfile of random's system information tool 1.09 (written by random/random)
Run by miro at 2014-04-27 13:57:51
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 261 GB (54%) free of 480 GB
Total RAM: 7916 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:57:53, on 27. 4. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
C:\Program Files\trend micro\miro.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~4\Office15\ONBttnIE.dll/105
O9 - Extra button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: ASUS Virtual MFP Service (UsbService) - Unknown owner - C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11418 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
winlogon.exe
C:\Windows\system32\WLANExt.exe 1348992
\??\C:\Windows\system32\conhost.exe "1809155249-814454843-776398653-235110103-710899102710185711949571029-922753482
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-5907495741539965175-27052391764692538-13838120641289270246706847690699040100
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe" -hidden /prefetch:1
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
WLIDSvcM.exe 3284
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\miro\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 97FCC36A-916F-5D16-8CC0-A7B376C06BB8 -Reinvoke
======Scheduled tasks folder======
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-1.job
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-2.job
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-3.job
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-5.job
=========Mozilla firefox=========
ProfilePath - C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-03-03 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-01-21 800448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-04-23 1499968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-01-21 550080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~4\Office15\GROOVEEX.DLL [2014-03-12 2333400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-23 996544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-03-03 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-01-21 655040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-04-23 1238336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-01-21 455360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2014-03-12 1728216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-23 798912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"UMonit64"=C:\Windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-05-20 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-05-20 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-05-20 444400]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-05-17 2891592]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Bloody2"=C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-01-15 14066176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-02-10 20924576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cheatengine]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Energy Management]
C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-02-13 8079408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EnergyUtility]
C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-02-13 6199128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-11 292848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-05-08 440320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-04-26 10:27:28 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-04-26 10:26:49 ----D---- C:\ProgramData\Malwarebytes
2014-04-26 10:02:07 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-04-26 10:01:33 ----D---- C:\AdwCleaner
2014-04-24 09:29:06 ----D---- C:\Program Files (x86)\Pool Nation
2014-04-23 22:33:10 ----A---- C:\Windows\system32\klfphc.dll
2014-04-23 22:32:36 ----D---- C:\Windows\ELAMBKUP
2014-04-23 22:32:35 ----D---- C:\ProgramData\Kaspersky Lab
2014-04-23 22:32:35 ----D---- C:\Program Files (x86)\Kaspersky Lab
2014-04-23 22:32:30 ----A---- C:\Windows\system32\drivers\klif.sys
2014-04-23 22:32:30 ----A---- C:\Windows\system32\drivers\klflt.sys
2014-04-23 20:36:35 ----A---- C:\ComboFix.txt
2014-04-23 20:30:07 ----D---- C:\$RECYCLE.BIN
2014-04-23 20:17:59 ----A---- C:\Windows\zip.exe
2014-04-23 20:17:59 ----A---- C:\Windows\SWSC.exe
2014-04-23 20:17:59 ----A---- C:\Windows\SWREG.exe
2014-04-23 20:17:59 ----A---- C:\Windows\sed.exe
2014-04-23 20:17:59 ----A---- C:\Windows\PEV.exe
2014-04-23 20:17:59 ----A---- C:\Windows\NIRCMD.exe
2014-04-23 20:17:59 ----A---- C:\Windows\MBR.exe
2014-04-23 20:17:59 ----A---- C:\Windows\grep.exe
2014-04-23 20:17:43 ----D---- C:\Qoobox
2014-04-23 20:17:19 ----D---- C:\Windows\erdnt
2014-04-23 20:10:11 ----D---- C:\rsit
2014-04-23 20:10:11 ----D---- C:\Program Files\trend micro
2014-04-23 19:57:10 ----D---- C:\FRST
2014-04-23 19:25:46 ----D---- C:\Program Files (x86)\SmartTweak
2014-04-23 19:25:27 ----AD---- C:\ProgramData\TEMP
2014-04-21 14:11:36 ----AH---- C:\Windows\system32\hamachi.sys
2014-04-21 14:11:07 ----D---- C:\ProgramData\LogMeIn
2014-04-18 17:14:35 ----D---- C:\ProgramData\Bohemia Interactive
2014-04-18 13:14:34 ----D---- C:\Program Files (x86)\Arma 3
2014-04-17 11:07:50 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-04-17 11:07:50 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-04-17 11:07:49 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-04-17 10:45:12 ----D---- C:\Hry
2014-04-17 08:45:44 ----D---- C:\Users\miro\AppData\Roaming\ProfiCAD
2014-04-17 08:45:42 ----D---- C:\Program Files (x86)\ProfiCAD
2014-04-17 08:29:33 ----D---- C:\Program Files (x86)\Borland
2014-04-17 08:28:45 ----A---- C:\Windows\SYSWOW64\hlvdd.dll
2014-04-17 08:28:40 ----A---- C:\Windows\system32\drivers\hardlock.sys
2014-04-17 08:28:34 ----A---- C:\Windows\system32\drivers\aksdf.sys
2014-04-17 08:27:35 ----D---- C:\Program Files (x86)\aucotec
2014-04-17 08:23:19 ----D---- C:\Program Files (x86)\MSSOAP
2014-04-17 07:45:01 ----D---- C:\Program Files (x86)\OEZ
2014-04-15 19:14:57 ----D---- C:\Users\miro\AppData\Roaming\uTorrent
2014-04-15 12:06:02 ----A---- C:\Windows\system32\drivers\PcaSp60.sys
2014-04-15 12:05:43 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50a64.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\drivers\PcaSp60.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\ASIW32N50.dll
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\ASINDIS5.sys
2014-04-15 12:05:03 ----D---- C:\Users\miro\AppData\Roaming\InstallShield
2014-04-14 14:51:07 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-04-14 14:51:07 ----A---- C:\Windows\system32\ieui.dll
2014-04-14 14:51:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-04-14 14:51:03 ----A---- C:\Windows\system32\vbscript.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\iernonce.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\ie4uinit.exe
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\msrating.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\msfeeds.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\jsproxy.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\jscript9diag.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\dxtrans.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\dxtmsft.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-04-14 14:50:57 ----A---- C:\Windows\system32\ieUnatt.exe
2014-04-14 14:50:57 ----A---- C:\Windows\system32\iesetup.dll
2014-04-14 14:50:56 ----A---- C:\Windows\system32\mshtml.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-04-14 14:50:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieapfltr.dll
2014-04-14 14:50:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-04-14 14:50:54 ----A---- C:\Windows\system32\iertutil.dll
2014-04-14 14:50:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-04-14 14:50:53 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-04-14 14:50:53 ----A---- C:\Windows\system32\wininet.dll
2014-04-14 14:50:53 ----A---- C:\Windows\system32\urlmon.dll
2014-04-14 14:50:52 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-04-14 14:50:52 ----A---- C:\Windows\system32\ieframe.dll
2014-04-14 14:50:51 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-04-14 14:50:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-04-14 14:50:51 ----A---- C:\Windows\system32\jscript9.dll
2014-04-10 12:41:48 ----A---- C:\Windows\game.ini
2014-04-10 05:24:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-04-10 05:24:22 ----A---- C:\Windows\system32\iologmsg.dll
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\storport.sys
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64win.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64cpu.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\ntvdm64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\kernel32.dll
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\user.exe
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-04-10 05:19:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-04-09 21:03:46 ----D---- C:\Users\miro\AppData\Roaming\Kastner software
2014-04-09 21:02:55 ----D---- C:\ProgramData\KASTNER software
2014-04-09 21:02:55 ----D---- C:\Program Files (x86)\KASTNER software
2014-04-08 14:51:01 ----D---- C:\Program Files (x86)\MC2
2014-04-08 12:42:05 ----D---- C:\Users\miro\AppData\Roaming\Milestone
2014-04-08 12:42:05 ----D---- C:\ProgramData\Steam
2014-04-07 23:02:55 ----D---- C:\Program Files (x86)\MXGP
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-04-01 09:38:52 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-04-01 09:37:01 ----D---- C:\Program Files (x86)\Immanitas Entertainment GmbH
2014-03-31 14:08:09 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-03-31 14:08:01 ----D---- C:\Windows\SYSWOW64\NV
2014-03-31 14:08:01 ----D---- C:\Windows\system32\NV
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvopencl.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvoglv64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvIFR64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvFBC64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvdispgenco6433523.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvdispco6433523.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuvid.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuda.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2014-03-31 14:05:11 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-03-31 14:05:10 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-03-31 14:05:10 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-03-31 14:05:10 ----A---- C:\Windows\system32\nvcompiler.dll
2014-03-31 13:58:25 ----D---- C:\NVIDIA
2014-03-31 12:17:50 ----D---- C:\ProgramData\Age of Empires II HD - Slovencina
2014-03-30 20:10:14 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-03-30 20:10:14 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-03-30 20:10:13 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-03-30 20:10:12 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-03-30 20:10:12 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-03-30 20:10:11 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-03-30 20:10:11 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-03-30 20:10:09 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-03-30 20:10:07 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-03-30 20:10:06 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-03-30 20:10:03 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-03-30 20:10:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-03-30 20:10:01 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-03-30 20:10:01 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-03-30 20:09:58 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-03-30 20:09:53 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-03-30 20:09:52 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-03-30 20:09:52 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-03-30 19:40:07 ----D---- C:\Program Files (x86)\Activision
======List of files/folders modified in the last 1 month======
2014-04-27 13:57:53 ----D---- C:\Windows\Temp
2014-04-27 13:57:53 ----D---- C:\Windows\Prefetch
2014-04-27 13:49:09 ----D---- C:\Users\miro\AppData\Roaming\Skype
2014-04-27 13:41:57 ----D---- C:\Windows\system32\drivers
2014-04-27 13:36:06 ----D---- C:\Windows\Tasks
2014-04-27 13:36:06 ----D---- C:\Windows\system32\Tasks
2014-04-27 06:50:41 ----D---- C:\Windows\system32\config
2014-04-26 23:35:39 ----D---- C:\Windows\System32
2014-04-26 23:35:39 ----D---- C:\Windows\inf
2014-04-26 23:35:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-04-26 23:29:24 ----SHD---- C:\System Volume Information
2014-04-26 23:29:16 ----RD---- C:\Program Files (x86)
2014-04-26 23:26:45 ----RSD---- C:\Windows\assembly
2014-04-26 23:26:14 ----D---- C:\ProgramData\YTD Video Downloader
2014-04-26 10:26:49 ----D---- C:\ProgramData
2014-04-26 10:02:07 ----D---- C:\Windows\SysWOW64
2014-04-23 22:51:00 ----SHD---- C:\Windows\Installer
2014-04-23 22:37:17 ----D---- C:\ProgramData\Skype
2014-04-23 22:33:11 ----D---- C:\Windows\system32\catroot
2014-04-23 22:32:58 ----D---- C:\Windows\system32\DriverStore
2014-04-23 22:32:36 ----D---- C:\Windows
2014-04-23 21:56:48 ----RD---- C:\Program Files
2014-04-23 20:30:09 ----A---- C:\Windows\system.ini
2014-04-23 20:30:04 ----D---- C:\Windows\system32\drivers\etc
2014-04-23 20:26:49 ----D---- C:\ProgramData\Local Settings
2014-04-23 20:24:05 ----D---- C:\Windows\SYSWOW64\drivers
2014-04-23 20:24:05 ----D---- C:\Windows\AppPatch
2014-04-23 20:24:05 ----D---- C:\Program Files (x86)\Common Files
2014-04-23 19:52:29 ----D---- C:\Users\miro\AppData\Roaming\FileZilla
2014-04-23 19:52:29 ----D---- C:\Users\miro\AppData\Roaming\AIMP3
2014-04-23 19:52:20 ----D---- C:\Windows\Logs
2014-04-23 19:52:20 ----D---- C:\Windows\debug
2014-04-23 19:19:01 ----D---- C:\Program Files (x86)\FastShare
2014-04-21 18:06:23 ----D---- C:\Users\miro\AppData\Roaming\vlc
2014-04-17 08:48:41 ----SD---- C:\Users\miro\AppData\Roaming\Microsoft
2014-04-17 08:33:11 ----A---- C:\Windows\win.ini
2014-04-17 08:29:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-04-17 08:28:34 ----D---- C:\Windows\system32\Setup
2014-04-17 08:23:37 ----D---- C:\Windows\winsxs
2014-04-15 19:15:14 ----D---- C:\Program Files\CCleaner
2014-04-15 12:05:40 ----D---- C:\Program Files (x86)\ASUS
2014-04-15 12:05:39 ----D---- C:\Windows\system32\catroot2
2014-04-14 22:25:31 ----D---- C:\Windows\rescache
2014-04-14 15:01:24 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-04-14 15:01:24 ----D---- C:\Windows\SYSWOW64\en-US
2014-04-14 15:01:24 ----D---- C:\Windows\system32\sk-SK
2014-04-14 15:01:24 ----D---- C:\Windows\system32\en-US
2014-04-14 15:01:24 ----D---- C:\Windows\PolicyDefinitions
2014-04-14 15:01:24 ----D---- C:\Program Files\Internet Explorer
2014-04-14 15:01:24 ----D---- C:\Program Files (x86)\Internet Explorer
2014-04-14 14:49:29 ----D---- C:\ProgramData\Microsoft Help
2014-04-11 03:03:51 ----D---- C:\Windows\system32\MRT
2014-04-11 03:02:19 ----A---- C:\Windows\system32\MRT.exe
2014-04-08 17:58:22 ----D---- C:\Program Files (x86)\Counter-Strike 1.6
2014-04-08 17:56:35 ----D---- C:\Program Files (x86)\Age of Empires II HD
2014-03-31 14:08:35 ----D---- C:\Windows\Microsoft.NET
2014-03-31 14:08:09 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-03-31 14:08:01 ----D---- C:\Temp
2014-03-31 14:07:59 ----D---- C:\ProgramData\NVIDIA
2014-03-31 12:17:53 ----RSD---- C:\Windows\Fonts
2014-03-31 09:35:08 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-11 20464]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2014-01-21 458336]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX64.sys [2014-02-13 39008]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2014-03-04 33736]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-01-17 386680]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2014-04-23 625248]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2014-01-21 29792]
R1 klpd;klpd; C:\Windows\system32\DRIVERS\klpd.sys [2013-04-12 15456]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2013-05-14 55904]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2014-01-21 178272]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aksdf;aksdf; C:\Windows\system32\DRIVERS\aksdf.sys [2006-12-13 65024]
R2 Hardlock;Hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2006-12-04 314368]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2014-02-13 30816]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2013-02-13 163808]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2013-05-16 374536]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-05-08 4431840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-11 366576]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-11 785904]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2014-04-23 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2014-01-21 29280]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-04-26 128200]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-01-11 64624]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2013-02-05 11518976]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 rtsuvc;Lenovo EasyCamera; C:\Windows\system32\DRIVERS\rtsuvc.sys [2013-03-15 8243272]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2014-01-25 34032]
R3 vuhub;Virtual Usb Hub; C:\Windows\system32\DRIVERS\vuhub.sys [2007-12-17 47616]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 SPDRIVER_1.35.1.155;SPDRIVER_1.35.1.155; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys []
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2013-02-13 163808]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-05-08 442368]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-04-26 119512]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
S4 klflt;klflt; C:\Windows\system32\DRIVERS\klflt.sys [2014-04-23 115296]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-02-13 770528]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [2014-01-21 214512]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-02-08 621296]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-03-04 922968]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-02-08 149744]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 UsbService;ASUS Virtual MFP Service; C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe [2010-08-10 334848]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-02-08 3386608]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-05-20 279024]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-03-26 1471792]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-04 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-02-08 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-15 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
A ešte jedna vec, ja tak trochu podozrievam HDD, raz som to tu riešil s iným PC a nemôžem si spomenúť akým programom sa to kontrolovalo.
Logfile of random's system information tool 1.09 (written by random/random)
Run by miro at 2014-04-27 13:57:51
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 261 GB (54%) free of 480 GB
Total RAM: 7916 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:57:53, on 27. 4. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal
Running processes:
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
C:\Program Files\trend micro\miro.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~4\Office15\ONBttnIE.dll/105
O9 - Extra button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Volanie kliknutím - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: ASUS Virtual MFP Service (UsbService) - Unknown owner - C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11418 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
winlogon.exe
C:\Windows\system32\WLANExt.exe 1348992
\??\C:\Windows\system32\conhost.exe "1809155249-814454843-776398653-235110103-710899102710185711949571029-922753482
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-5907495741539965175-27052391764692538-13838120641289270246706847690699040100
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe" -hidden /prefetch:1
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
WLIDSvcM.exe 3284
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\miro\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 97FCC36A-916F-5D16-8CC0-A7B376C06BB8 -Reinvoke
======Scheduled tasks folder======
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-1.job
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-2.job
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-3.job
C:\Windows\tasks\f5758e2c-ba15-4a45-8d17-109e967c1ec5-5.job
=========Mozilla firefox=========
ProfilePath - C:\Users\miro\AppData\Roaming\Mozilla\Firefox\Profiles\5l0ulx2n.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-03-03 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-01-21 800448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-04-23 1499968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-01-21 550080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~4\Office15\GROOVEEX.DLL [2014-03-12 2333400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-23 996544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-03-03 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-01-21 655040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-04-23 1238336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-01-21 455360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2014-03-12 1728216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-23 798912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"UMonit64"=C:\Windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-05-20 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-05-20 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-05-20 444400]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-05-17 2891592]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Bloody2"=C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-01-15 14066176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-02-10 20924576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cheatengine]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Energy Management]
C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-02-13 8079408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EnergyUtility]
C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-02-13 6199128]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-11 292848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-05-08 440320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2014-04-26 10:27:28 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-04-26 10:26:49 ----D---- C:\ProgramData\Malwarebytes
2014-04-26 10:02:07 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-04-26 10:01:33 ----D---- C:\AdwCleaner
2014-04-24 09:29:06 ----D---- C:\Program Files (x86)\Pool Nation
2014-04-23 22:33:10 ----A---- C:\Windows\system32\klfphc.dll
2014-04-23 22:32:36 ----D---- C:\Windows\ELAMBKUP
2014-04-23 22:32:35 ----D---- C:\ProgramData\Kaspersky Lab
2014-04-23 22:32:35 ----D---- C:\Program Files (x86)\Kaspersky Lab
2014-04-23 22:32:30 ----A---- C:\Windows\system32\drivers\klif.sys
2014-04-23 22:32:30 ----A---- C:\Windows\system32\drivers\klflt.sys
2014-04-23 20:36:35 ----A---- C:\ComboFix.txt
2014-04-23 20:30:07 ----D---- C:\$RECYCLE.BIN
2014-04-23 20:17:59 ----A---- C:\Windows\zip.exe
2014-04-23 20:17:59 ----A---- C:\Windows\SWSC.exe
2014-04-23 20:17:59 ----A---- C:\Windows\SWREG.exe
2014-04-23 20:17:59 ----A---- C:\Windows\sed.exe
2014-04-23 20:17:59 ----A---- C:\Windows\PEV.exe
2014-04-23 20:17:59 ----A---- C:\Windows\NIRCMD.exe
2014-04-23 20:17:59 ----A---- C:\Windows\MBR.exe
2014-04-23 20:17:59 ----A---- C:\Windows\grep.exe
2014-04-23 20:17:43 ----D---- C:\Qoobox
2014-04-23 20:17:19 ----D---- C:\Windows\erdnt
2014-04-23 20:10:11 ----D---- C:\rsit
2014-04-23 20:10:11 ----D---- C:\Program Files\trend micro
2014-04-23 19:57:10 ----D---- C:\FRST
2014-04-23 19:25:46 ----D---- C:\Program Files (x86)\SmartTweak
2014-04-23 19:25:27 ----AD---- C:\ProgramData\TEMP
2014-04-21 14:11:36 ----AH---- C:\Windows\system32\hamachi.sys
2014-04-21 14:11:07 ----D---- C:\ProgramData\LogMeIn
2014-04-18 17:14:35 ----D---- C:\ProgramData\Bohemia Interactive
2014-04-18 13:14:34 ----D---- C:\Program Files (x86)\Arma 3
2014-04-17 11:07:50 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-04-17 11:07:50 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-04-17 11:07:49 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-04-17 10:45:12 ----D---- C:\Hry
2014-04-17 08:45:44 ----D---- C:\Users\miro\AppData\Roaming\ProfiCAD
2014-04-17 08:45:42 ----D---- C:\Program Files (x86)\ProfiCAD
2014-04-17 08:29:33 ----D---- C:\Program Files (x86)\Borland
2014-04-17 08:28:45 ----A---- C:\Windows\SYSWOW64\hlvdd.dll
2014-04-17 08:28:40 ----A---- C:\Windows\system32\drivers\hardlock.sys
2014-04-17 08:28:34 ----A---- C:\Windows\system32\drivers\aksdf.sys
2014-04-17 08:27:35 ----D---- C:\Program Files (x86)\aucotec
2014-04-17 08:23:19 ----D---- C:\Program Files (x86)\MSSOAP
2014-04-17 07:45:01 ----D---- C:\Program Files (x86)\OEZ
2014-04-15 19:14:57 ----D---- C:\Users\miro\AppData\Roaming\uTorrent
2014-04-15 12:06:02 ----A---- C:\Windows\system32\drivers\PcaSp60.sys
2014-04-15 12:05:43 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50a64.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\drivers\PcaSp60.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\drivers\PCASp50.sys
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\ASIW32N50.dll
2014-04-15 12:05:42 ----A---- C:\Windows\SYSWOW64\ASINDIS5.sys
2014-04-15 12:05:03 ----D---- C:\Users\miro\AppData\Roaming\InstallShield
2014-04-14 14:51:07 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-04-14 14:51:07 ----A---- C:\Windows\system32\ieui.dll
2014-04-14 14:51:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-04-14 14:51:03 ----A---- C:\Windows\system32\vbscript.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\iernonce.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-04-14 14:50:59 ----A---- C:\Windows\system32\ie4uinit.exe
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-04-14 14:50:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\msrating.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\msfeeds.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\jsproxy.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\jscript9diag.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\dxtrans.dll
2014-04-14 14:50:58 ----A---- C:\Windows\system32\dxtmsft.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-04-14 14:50:57 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-04-14 14:50:57 ----A---- C:\Windows\system32\ieUnatt.exe
2014-04-14 14:50:57 ----A---- C:\Windows\system32\iesetup.dll
2014-04-14 14:50:56 ----A---- C:\Windows\system32\mshtml.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-04-14 14:50:55 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-04-14 14:50:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-04-14 14:50:55 ----A---- C:\Windows\system32\ieapfltr.dll
2014-04-14 14:50:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-04-14 14:50:54 ----A---- C:\Windows\system32\iertutil.dll
2014-04-14 14:50:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-04-14 14:50:53 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-04-14 14:50:53 ----A---- C:\Windows\system32\wininet.dll
2014-04-14 14:50:53 ----A---- C:\Windows\system32\urlmon.dll
2014-04-14 14:50:52 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-04-14 14:50:52 ----A---- C:\Windows\system32\ieframe.dll
2014-04-14 14:50:51 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-04-14 14:50:51 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-04-14 14:50:51 ----A---- C:\Windows\system32\jscript9.dll
2014-04-10 12:41:48 ----A---- C:\Windows\game.ini
2014-04-10 05:24:22 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2014-04-10 05:24:22 ----A---- C:\Windows\system32\iologmsg.dll
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\storport.sys
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2014-04-10 05:24:22 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64win.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64cpu.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\wow64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\ntvdm64.dll
2014-04-10 05:19:22 ----A---- C:\Windows\system32\kernel32.dll
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\user.exe
2014-04-10 05:19:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-04-10 05:19:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-04-09 21:03:46 ----D---- C:\Users\miro\AppData\Roaming\Kastner software
2014-04-09 21:02:55 ----D---- C:\ProgramData\KASTNER software
2014-04-09 21:02:55 ----D---- C:\Program Files (x86)\KASTNER software
2014-04-08 14:51:01 ----D---- C:\Program Files (x86)\MC2
2014-04-08 12:42:05 ----D---- C:\Users\miro\AppData\Roaming\Milestone
2014-04-08 12:42:05 ----D---- C:\ProgramData\Steam
2014-04-07 23:02:55 ----D---- C:\Program Files (x86)\MXGP
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-04-01 09:38:53 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-04-01 09:38:52 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-04-01 09:37:01 ----D---- C:\Program Files (x86)\Immanitas Entertainment GmbH
2014-03-31 14:08:09 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-03-31 14:08:01 ----D---- C:\Windows\SYSWOW64\NV
2014-03-31 14:08:01 ----D---- C:\Windows\system32\NV
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-03-31 14:05:11 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvopencl.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvoglv64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvIFR64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\NvFBC64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvdispgenco6433523.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvdispco6433523.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuvid.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\nvcuda.dll
2014-03-31 14:05:11 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2014-03-31 14:05:11 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-03-31 14:05:10 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-03-31 14:05:10 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-03-31 14:05:10 ----A---- C:\Windows\system32\nvcompiler.dll
2014-03-31 13:58:25 ----D---- C:\NVIDIA
2014-03-31 12:17:50 ----D---- C:\ProgramData\Age of Empires II HD - Slovencina
2014-03-30 20:10:14 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-03-30 20:10:14 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-03-30 20:10:13 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-03-30 20:10:13 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-03-30 20:10:12 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-03-30 20:10:12 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-03-30 20:10:11 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-03-30 20:10:11 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-03-30 20:10:09 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-03-30 20:10:07 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-03-30 20:10:06 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-03-30 20:10:06 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-03-30 20:10:03 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-03-30 20:10:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-03-30 20:10:01 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-03-30 20:10:01 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-03-30 20:09:58 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-03-30 20:09:56 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-03-30 20:09:55 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-03-30 20:09:55 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-03-30 20:09:54 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-03-30 20:09:53 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-03-30 20:09:53 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-03-30 20:09:52 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-03-30 20:09:52 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-03-30 19:40:07 ----D---- C:\Program Files (x86)\Activision
======List of files/folders modified in the last 1 month======
2014-04-27 13:57:53 ----D---- C:\Windows\Temp
2014-04-27 13:57:53 ----D---- C:\Windows\Prefetch
2014-04-27 13:49:09 ----D---- C:\Users\miro\AppData\Roaming\Skype
2014-04-27 13:41:57 ----D---- C:\Windows\system32\drivers
2014-04-27 13:36:06 ----D---- C:\Windows\Tasks
2014-04-27 13:36:06 ----D---- C:\Windows\system32\Tasks
2014-04-27 06:50:41 ----D---- C:\Windows\system32\config
2014-04-26 23:35:39 ----D---- C:\Windows\System32
2014-04-26 23:35:39 ----D---- C:\Windows\inf
2014-04-26 23:35:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-04-26 23:29:24 ----SHD---- C:\System Volume Information
2014-04-26 23:29:16 ----RD---- C:\Program Files (x86)
2014-04-26 23:26:45 ----RSD---- C:\Windows\assembly
2014-04-26 23:26:14 ----D---- C:\ProgramData\YTD Video Downloader
2014-04-26 10:26:49 ----D---- C:\ProgramData
2014-04-26 10:02:07 ----D---- C:\Windows\SysWOW64
2014-04-23 22:51:00 ----SHD---- C:\Windows\Installer
2014-04-23 22:37:17 ----D---- C:\ProgramData\Skype
2014-04-23 22:33:11 ----D---- C:\Windows\system32\catroot
2014-04-23 22:32:58 ----D---- C:\Windows\system32\DriverStore
2014-04-23 22:32:36 ----D---- C:\Windows
2014-04-23 21:56:48 ----RD---- C:\Program Files
2014-04-23 20:30:09 ----A---- C:\Windows\system.ini
2014-04-23 20:30:04 ----D---- C:\Windows\system32\drivers\etc
2014-04-23 20:26:49 ----D---- C:\ProgramData\Local Settings
2014-04-23 20:24:05 ----D---- C:\Windows\SYSWOW64\drivers
2014-04-23 20:24:05 ----D---- C:\Windows\AppPatch
2014-04-23 20:24:05 ----D---- C:\Program Files (x86)\Common Files
2014-04-23 19:52:29 ----D---- C:\Users\miro\AppData\Roaming\FileZilla
2014-04-23 19:52:29 ----D---- C:\Users\miro\AppData\Roaming\AIMP3
2014-04-23 19:52:20 ----D---- C:\Windows\Logs
2014-04-23 19:52:20 ----D---- C:\Windows\debug
2014-04-23 19:19:01 ----D---- C:\Program Files (x86)\FastShare
2014-04-21 18:06:23 ----D---- C:\Users\miro\AppData\Roaming\vlc
2014-04-17 08:48:41 ----SD---- C:\Users\miro\AppData\Roaming\Microsoft
2014-04-17 08:33:11 ----A---- C:\Windows\win.ini
2014-04-17 08:29:33 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-04-17 08:28:34 ----D---- C:\Windows\system32\Setup
2014-04-17 08:23:37 ----D---- C:\Windows\winsxs
2014-04-15 19:15:14 ----D---- C:\Program Files\CCleaner
2014-04-15 12:05:40 ----D---- C:\Program Files (x86)\ASUS
2014-04-15 12:05:39 ----D---- C:\Windows\system32\catroot2
2014-04-14 22:25:31 ----D---- C:\Windows\rescache
2014-04-14 15:01:24 ----D---- C:\Windows\SYSWOW64\sk-SK
2014-04-14 15:01:24 ----D---- C:\Windows\SYSWOW64\en-US
2014-04-14 15:01:24 ----D---- C:\Windows\system32\sk-SK
2014-04-14 15:01:24 ----D---- C:\Windows\system32\en-US
2014-04-14 15:01:24 ----D---- C:\Windows\PolicyDefinitions
2014-04-14 15:01:24 ----D---- C:\Program Files\Internet Explorer
2014-04-14 15:01:24 ----D---- C:\Program Files (x86)\Internet Explorer
2014-04-14 14:49:29 ----D---- C:\ProgramData\Microsoft Help
2014-04-11 03:03:51 ----D---- C:\Windows\system32\MRT
2014-04-11 03:02:19 ----A---- C:\Windows\system32\MRT.exe
2014-04-08 17:58:22 ----D---- C:\Program Files (x86)\Counter-Strike 1.6
2014-04-08 17:56:35 ----D---- C:\Program Files (x86)\Age of Empires II HD
2014-03-31 14:08:35 ----D---- C:\Windows\Microsoft.NET
2014-03-31 14:08:09 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-03-31 14:08:01 ----D---- C:\Temp
2014-03-31 14:07:59 ----D---- C:\ProgramData\NVIDIA
2014-03-31 12:17:53 ----RSD---- C:\Windows\Fonts
2014-03-31 09:35:08 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-11 20464]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2014-01-21 458336]
R0 LHDmgr;LHDmgr; C:\Windows\System32\DRIVERS\LhdX64.sys [2014-02-13 39008]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2014-03-04 33736]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-01-17 386680]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2014-04-23 625248]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2014-01-21 29792]
R1 klpd;klpd; C:\Windows\system32\DRIVERS\klpd.sys [2013-04-12 15456]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2013-05-14 55904]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2014-01-21 178272]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aksdf;aksdf; C:\Windows\system32\DRIVERS\aksdf.sys [2006-12-13 65024]
R2 Hardlock;Hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2006-12-04 314368]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\Windows\system32\DRIVERS\AcpiVpc.sys [2014-02-13 30816]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter; C:\Windows\system32\DRIVERS\AMPPAL.sys [2013-02-13 163808]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2013-05-16 374536]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-05-08 4431840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-11 366576]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-11 785904]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2014-04-23 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2014-01-21 29280]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-04-26 128200]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-01-11 64624]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2013-02-05 11518976]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 rtsuvc;Lenovo EasyCamera; C:\Windows\system32\DRIVERS\rtsuvc.sys [2013-03-15 8243272]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2014-01-25 34032]
R3 vuhub;Virtual Usb Hub; C:\Windows\system32\DRIVERS\vuhub.sys [2007-12-17 47616]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 SPDRIVER_1.35.1.155;SPDRIVER_1.35.1.155; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.35.1.155\jsdrv.sys []
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol; C:\Windows\system32\DRIVERS\amppal.sys [2013-02-13 163808]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 IntcDAud;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-05-08 442368]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-04-26 119512]
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 WinUSB;Android USB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
S4 klflt;klflt; C:\Windows\system32\DRIVERS\klflt.sys [2014-04-23 115296]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-02-13 770528]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [2014-01-21 214512]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-09-12 135984]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-02-08 621296]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-03-04 922968]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-02-08 149744]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 UsbService;ASUS Virtual MFP Service; C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe [2010-08-10 334848]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-02-08 3386608]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-05-20 279024]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-03-26 1471792]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-03-04 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-02-08 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-01-25 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-15 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
A ešte jedna vec, ja tak trochu podozrievam HDD, raz som to tu riešil s iným PC a nemôžem si spomenúť akým programom sa to kontrolovalo.
Re: Prosím o kontrolu logu- pomalé PC
Koukam, ze je zmena antiviru Kasperak je ale placeny
Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Kasperak je ale placeny Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu- pomalé PC
Tak tady je CDI:
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Home Premium Edition SP1 [6.1 Build 7601] (x64)
Date : 2014/04/27 14:15:25
-- Controller Map ----------------------------------------------------------
+ ATA Channel 2 (2) [ATA]
- MATSHITA DVD-RAM UJ8DB ATA Device
+ ATA Channel 5 (5) [ATA]
- ST1000LM014-1EJ164 ATA Device
+ Intel(R) 8 Series SATA AHCI Controller - 8C03 [ATA]
- ATA Channel 2 (2)
- ATA Channel 5 (5)
+ AN65ZRXN IDE Controller [SCSI]
- FKF 5Q3WXU7S16 SCSI CdRom Device
-- Disk List ---------------------------------------------------------------
(1) ST1000LM014-1EJ164 : 1000,2 GB [0/1/0, pd1] - st
----------------------------------------------------------------------------
(1) ST1000LM014-1EJ164
----------------------------------------------------------------------------
Model : ST1000LM014-1EJ164
Firmware : LVD1
Serial Number : W380KK3S
Disk Size : 1000,2 GB (8,4/137,4/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ---- [001Fh]
Transfer Mode : SATA/600
Power On Hours : 3001 hod.
Power On Count : 122 krát
Temparature : 41 C (105 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 108 _99 __6 0000010C3078 Počet chybných čítaní
03 _98 _98 __0 000000000000 Čas na roztočenie platní
04 100 100 _20 00000000006F Počet spustení/zastavení
05 100 100 _10 000000000000 Počet premapovaných sektorov
07 _75 _60 _30 000002302DD6 Počet chybných vyhľadávaní
09 _97 _97 __0 000000000BB9 Počet odpracovaných hodín
0A 100 100 _97 000000000000 Počet opakovaných pokusov o roztočenie platní
0C 100 100 _20 00000000007A Počet cyklov zapnutia zariadenia
B8 100 100 _99 000000000000 Priame chyby
BB 100 100 __0 000000000000 Zaznamenané neopraviteľné chyby
BC 100 _99 __0 000000000001 Limit na príkaz
BD _90 _90 __0 00000000000A Zápisy veľkého preletu
BE _59 _50 _45 000032170029 Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otrasovým senzorom
C0 100 100 __0 00000000001A Počet vypnutí disku
C1 _96 _96 __0 000000001FFD Počet cyklov načítania/vymazania
C2 _41 _50 __0 000C00000029 Teplota
C5 100 100 __0 000000000000 Počet podozrivých sektorov
C6 100 100 __0 000000000000 Počet neopraviteľných sektorov
C7 200 200 __0 000000000000 Počet chýb v kontrolnom súčte UltraDMA
FE 100 100 __0 000000000000 Ochrana pred voľným pádom
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 5733 5733 3830 4B4B 3353
020: 0000 0000 0004 4C56 4431 2020 2020 5354 3130 3030
030: 4C4D 3031 342D 3145 4A31 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 8F0E 8F0E 0006 004C 0040
080: 03F0 001F 346B 7D09 6163 BC09 BC09 6163 407F 005C
090: 005C 8080 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 6003 6003 0000 5000 C500
110: 6ACE 1982 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0108 0108 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 05FF 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 7200 8806
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 1081 1081 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 107F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0003 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 A2A5
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Home Premium Edition SP1 [6.1 Build 7601] (x64)
Date : 2014/04/27 14:15:25
-- Controller Map ----------------------------------------------------------
+ ATA Channel 2 (2) [ATA]
- MATSHITA DVD-RAM UJ8DB ATA Device
+ ATA Channel 5 (5) [ATA]
- ST1000LM014-1EJ164 ATA Device
+ Intel(R) 8 Series SATA AHCI Controller - 8C03 [ATA]
- ATA Channel 2 (2)
- ATA Channel 5 (5)
+ AN65ZRXN IDE Controller [SCSI]
- FKF 5Q3WXU7S16 SCSI CdRom Device
-- Disk List ---------------------------------------------------------------
(1) ST1000LM014-1EJ164 : 1000,2 GB [0/1/0, pd1] - st
----------------------------------------------------------------------------
(1) ST1000LM014-1EJ164
----------------------------------------------------------------------------
Model : ST1000LM014-1EJ164
Firmware : LVD1
Serial Number : W380KK3S
Disk Size : 1000,2 GB (8,4/137,4/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ---- [001Fh]
Transfer Mode : SATA/600
Power On Hours : 3001 hod.
Power On Count : 122 krát
Temparature : 41 C (105 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 108 _99 __6 0000010C3078 Počet chybných čítaní
03 _98 _98 __0 000000000000 Čas na roztočenie platní
04 100 100 _20 00000000006F Počet spustení/zastavení
05 100 100 _10 000000000000 Počet premapovaných sektorov
07 _75 _60 _30 000002302DD6 Počet chybných vyhľadávaní
09 _97 _97 __0 000000000BB9 Počet odpracovaných hodín
0A 100 100 _97 000000000000 Počet opakovaných pokusov o roztočenie platní
0C 100 100 _20 00000000007A Počet cyklov zapnutia zariadenia
B8 100 100 _99 000000000000 Priame chyby
BB 100 100 __0 000000000000 Zaznamenané neopraviteľné chyby
BC 100 _99 __0 000000000001 Limit na príkaz
BD _90 _90 __0 00000000000A Zápisy veľkého preletu
BE _59 _50 _45 000032170029 Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otrasovým senzorom
C0 100 100 __0 00000000001A Počet vypnutí disku
C1 _96 _96 __0 000000001FFD Počet cyklov načítania/vymazania
C2 _41 _50 __0 000C00000029 Teplota
C5 100 100 __0 000000000000 Počet podozrivých sektorov
C6 100 100 __0 000000000000 Počet neopraviteľných sektorov
C7 200 200 __0 000000000000 Počet chýb v kontrolnom súčte UltraDMA
FE 100 100 __0 000000000000 Ochrana pred voľným pádom
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 5733 5733 3830 4B4B 3353
020: 0000 0000 0004 4C56 4431 2020 2020 5354 3130 3030
030: 4C4D 3031 342D 3145 4A31 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 8F0E 8F0E 0006 004C 0040
080: 03F0 001F 346B 7D09 6163 BC09 BC09 6163 407F 005C
090: 005C 8080 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 6003 6003 0000 5000 C500
110: 6ACE 1982 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0108 0108 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 05FF 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 7200 8806
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 1081 1081 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 107F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0003 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 A2A5
Přispějete na provoz fóra?