Dobrý den,
dnes mi po spuštění PC, na mě vyskočila chybová hláška že nelze spustit winlog.exe. Jedná se totožný problém jako je popsán a vyřešen zde http://forum.viry.cz/viewtopic.php?f=13&t=138540. Chtěl bych se zeptat zda můžu aplikovat stejný postup k vyřešení nebo je každý postup specifický?
Děkuji za odpověď
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2014-06-18 18:07:36
Microsoft Windows 8.1
System drive C: has 334 GB (37%) free of 911 GB
Total RAM: 16330 MB (84% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:07:58, on 18. 6. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Windows\SysWOW64\UMonit64.exe
C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\windrv.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera_crashreporter.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\winlog.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O4 - HKCU\..\Run: [Windows Drivers] "C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\windrv.exe"
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Unknown owner - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Survarium Update Service - Unknown owner - C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11910 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 776215913648
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
dashost.exe {ba1a3108-dcfd-4d74-bdfc4c0cbf04728d}
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe"
"C:\WINDOWS\System32\Drivers\WTSRV.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 978f3351-b074-406c-a899-57c723e9f3b0 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-536a4868-cd3e-426e-ae61-14d86578debf -SystemEventPortName:HostProcess-23d15467-83d6-4d17-b1aa-570e159d3695 -IoCancelEventPortName:HostProcess-a456e7d5-5727-4cb9-a586-710ac4aee4d4 -NonStateChangingEventPortName:HostProcess-e22fb2d4-d38d-4f54-8b96-94d2e1bceed9 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:fadd8cef-39c9-4536-9207-50413c823392 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe" /STARTUP
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\RTFTrack.exe"
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\SmartTechnology\Software\ProfilerU.exe"
"C:\Program Files\SmartTechnology\Software\SaiMfd.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\windrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\System32\WTClient.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher /crash-reporter-parent-id=6792
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=gpu-process --channel="6792.0.62864806\2089051282" --crash-reporter-pid=6820 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15,40 --gpu-vendor-id=0x10de --gpu-device-id=0x0fcd --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4043 --crash-reporter-pid=6820 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6820 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6792.2.158895428\1731754089" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6820 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6792.4.1699018918\94436868" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6820 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6792.5.581726097\1777462568" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6820 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6792.6.94877218\100486124" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6820 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6792.12.2021084887\176228724" /prefetch:673131151
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6820 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6792.19.47534734\177690464" /prefetch:673131151
taskhost.exe $(Arg0)
"C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\winlog.exe" -a scrypt -t 2 -o stratum+tcp://pool.litecoinrain.org:3333 -O woody:x
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6820 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6792.32.467917794\659412850" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6820 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6792.33.1995049977\1333490407" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 588 592 600 65536 596
"C:\Users\Tomáš\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Opera scheduled Autoupdate 1392984530.job - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate
C:\WINDOWS\tasks\Plus-HD-7.6-codedownloader.job - C:\Program Files (x86)\Plus-HD-7.6\Plus-HD-7.6-codedownloader.exe /reinstallapp /runfrom=task /agentregpath='Plus-HD-7.6' /appid=50778 /srcid='001106' /subid='0' /zdata='0' /bic=0C6F09E76D5F41D2AE4EA518DF6359D9IE /verifier=d536d0af95cdb1cd683630ac383f4a22 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1393101239 /statsdomain=http://stats.srvstatsdata.com /errorsdomain=http://errors.srvstatsdata.com /codedownloaddomain=http://app-static.crossrider.com /defbro=opera /allusers /autoupdateulr='http://update.srvstatsdata.com/ie_code_ ... pdate.json' /runfrom='task' /externallog=''
C:\WINDOWS\tasks\Plus-HD-7.6-enabler.job - C:\Program Files (x86)\Plus-HD-7.6\Plus-HD-7.6-enabler.exe /enablebho /agentregpath='Plus-HD-7.6' /appid=50778 /srcid='001106' /subid='0' /zdata='0' /bic=0C6F09E76D5F41D2AE4EA518DF6359D9IE /verifier=d536d0af95cdb1cd683630ac383f4a22 /installerversion=1_34_2_13 /installationtime=1393101239 /statsdomain=http://stats.srvstatsdata.com /errorsdomain=http://errors.srvstatsdata.com /bhoguid=11111111-1111-1111-1111-110511071178 /defbro=opera /useiepol /allusers /autoupdateulr='http://update.srvstatsdata.com/ie_enabl ... pdate.json' /runfrom='task' /externallog=''
C:\WINDOWS\tasks\Plus-HD-7.6-firefoxinstaller.job - C:\Program Files (x86)\Plus-HD-7.6\Plus-HD-7.6-firefoxinstaller.exe /installxpi /agentregpath='Plus-HD-7.6' /extensionfilepath='C:\Program Files (x86)\Plus-HD-7.6\50778.xpi' /appid=50778 /srcid='001106' /subid='0' /zdata='0' /bic=0C6F09E76D5F41D2AE4EA518DF6359D9IE /verifier=d536d0af95cdb1cd683630ac383f4a22 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1393101239 /statsdomain=http://stats.srvstatsdata.com /errorsdomain=http://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=1079a15c-f3ae-4d92-b473-c51c7f3bc6de@63449f71-c434-4007-828c-7025ecf04b05.com /extensionversion=0.93 /prefsbranch=a1079a15cf3ae4d92b473c51c7f3bc6de63449f71c4344007828c7025ecf04b05com50778 /updateurl=https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /50778.rdf /extensionname='Plus-HD-7.6' /extensiondesc='Turn YouTube videos to High Definition by default' /publishername='Plus HD' /defbro=opera /allusers /allprofiles /checkfflist /autoupdateulr='http://update.srvstatsdata.com/ff_agent ... pdate.json' /runfrom='task' /externallog=''
C:\WINDOWS\tasks\Plus-HD-7.6-updater.job - C:\Program Files (x86)\Plus-HD-7.6\Plus-HD-7.6-updater.exe /runupdater /agentregpath='Plus-HD-7.6' /appid=50778 /srcid='001106' /subid='0' /zdata='0' /bic=0C6F09E76D5F41D2AE4EA518DF6359D9IE /verifier=d536d0af95cdb1cd683630ac383f4a22 /installerversion=1_34_2_13 /installationtime=1393101239 /statsdomain=http://stats.srvstatsdata.com /errorsdomain=http://errors.srvstatsdata.com /geoserviceurl=http://ipgeoapi.com/ /updatejsondomain=http://update.srvstatsdata.com /updaterversion=2 /monetizationdomain=http://stats.mstatsserv.com /autoupdateulr='http://update.srvstatsdata.com/updater_ ... pdate.json' /runfrom='task' /externallog=''
C:\WINDOWS\tasks\Plus-HD-7.6-validator.job - C:\Program Files (x86)\Plus-HD-7.6\Plus-HD-7.6-validator.exe /rawdata=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
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511071178}]
Plus-HD-7.6 - C:\Program Files (x86)\Plus-HD-7.6\Plus-HD-7.6-bho64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-24 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-04-21 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 877720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-24 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-21 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 704664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-07-19 6340312]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe []
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-04-30 36352]
"UMonit64"=C:\windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-11-21 17097200]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-11-21 193008]
"ProfilerU"=C:\Program Files\SmartTechnology\Software\ProfilerU.exe [2013-04-16 454144]
"SaiMfd"=C:\Program Files\SmartTechnology\Software\SaiMfd.exe [2013-04-16 158208]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-06-03 2985200]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-05-30 2352072]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2014-05-30 1279480]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-09-19 7818040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Xvid"=C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]
"Windows Drivers"=C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\windrv.exe [2014-06-03 6656]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-05 3890208]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"WTClient"=C:\WINDOWS\system32\WTClient.exe [2014-03-08 40832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-06-18 18:07:36 ----D---- C:\rsit
2014-06-18 18:07:36 ----D---- C:\Program Files\trend micro
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-18 10:45:52 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-18 10:45:50 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-18 10:44:26 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-18 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvopencl.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispgenco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2014-06-18 00:05:35 ----D---- C:\Program Files (x86)\The Witcher Enhanced Edition Director's Cut
2014-06-15 16:53:35 ----D---- C:\Program Files (x86)\Spintires
2014-06-13 11:15:56 ----D---- C:\Program Files (x86)\Fraps
2014-06-11 22:49:27 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 22:49:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 22:49:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 22:49:18 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 22:49:17 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 22:49:16 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\twinui.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-11 22:48:53 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\win32k.sys
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\localspl.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\services.exe
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfps.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 22:48:23 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-09 19:31:43 ----D---- C:\Program Files (x86)\Postal 2 Share The Pain
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files\DESIGNER
2014-06-04 22:04:25 ----D---- C:\Program Files\Microsoft.NET
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2014-06-04 22:02:10 ----SHD---- C:\Config.Msi
2014-06-04 18:38:00 ----D---- C:\WINDOWS\PCHEALTH
2014-06-04 18:38:00 ----D---- C:\Program Files\Microsoft SQL Server
2014-06-04 18:35:06 ----D---- C:\Program Files\Microsoft Analysis Services
2014-06-04 18:35:05 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2014-06-04 18:35:00 ----D---- C:\Program Files\Microsoft Office
2014-06-04 18:34:55 ----RHD---- C:\MSOCache
2014-06-04 18:33:03 ----D---- C:\ProgramData\Microsoft Help
2014-06-04 14:17:29 ----D---- C:\Program Files (x86)\Murdered Soul Suspect
2014-06-04 14:17:17 ----D---- C:\Users\Tomáš\AppData\Roaming\WinUpdate
2014-06-02 23:27:39 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2014-06-02 23:27:39 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2014-05-29 09:06:39 ----D---- C:\Program Files (x86)\Survarium
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispgenco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2014-05-26 17:44:48 ----D---- C:\ProgramData\Orbit
2014-05-26 13:54:55 ----D---- C:\Users\Tomáš\AppData\Roaming\Tropico 5
2014-05-26 13:50:13 ----D---- C:\Program Files (x86)\Tropico 5
2014-05-26 00:37:00 ----D---- C:\Program Files (x86)\Ubisoft Game Launcher
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispgenco6433781.dll
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispco6433781.dll
2014-05-22 12:41:25 ----D---- C:\Program Files (x86)\Wolfenstein The New Order
======List of files/folders modified in the last 1 month======
2014-06-18 18:07:36 ----RD---- C:\Program Files
2014-06-18 18:07:30 ----D---- C:\WINDOWS\Prefetch
2014-06-18 18:00:00 ----D---- C:\WINDOWS\system32\sru
2014-06-18 17:49:35 ----D---- C:\WINDOWS\Temp
2014-06-18 17:37:34 ----D---- C:\WINDOWS\Microsoft.NET
2014-06-18 11:00:54 ----RD---- C:\WINDOWS\System32
2014-06-18 11:00:54 ----D---- C:\WINDOWS\Inf
2014-06-18 11:00:54 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-18 10:54:29 ----D---- C:\ProgramData\NVIDIA
2014-06-18 10:53:43 ----D---- C:\Program Files (x86)\Opera
2014-06-18 10:52:52 ----D---- C:\WINDOWS\system32\config
2014-06-18 10:48:26 ----D---- C:\WINDOWS\WinSxS
2014-06-18 10:47:15 ----D---- C:\WINDOWS\SysWOW64
2014-06-18 10:46:03 ----D---- C:\Program Files\Internet Explorer
2014-06-18 10:46:03 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-18 10:46:02 ----RD---- C:\WINDOWS\ToastData
2014-06-18 10:46:02 ----D---- C:\WINDOWS\WinStore
2014-06-18 10:46:02 ----D---- C:\WINDOWS\system32\drivers
2014-06-18 10:46:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\oobe
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-18 10:46:00 ----D---- C:\WINDOWS\system32\DriverStore
2014-06-18 10:45:56 ----D---- C:\WINDOWS\CbsTemp
2014-06-18 10:43:55 ----D---- C:\WINDOWS\system32\MRT
2014-06-18 10:42:47 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-18 10:42:43 ----D---- C:\Windows
2014-06-18 10:42:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\wbem
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\cs-CZ
2014-06-18 10:39:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-06-18 10:37:36 ----D---- C:\Program Files\NVIDIA Corporation
2014-06-18 00:41:46 ----RD---- C:\Program Files (x86)
2014-06-17 23:43:20 ----SHD---- C:\System Volume Information
2014-06-16 23:34:44 ----D---- C:\Program Files (x86)\Steam
2014-06-15 22:23:27 ----D---- C:\WINDOWS\SYSWOW64\directx
2014-06-15 22:23:24 ----HD---- C:\WINDOWS\msdownld.tmp
2014-06-15 17:11:38 ----D---- C:\Users\Tomáš\AppData\Roaming\SpinTires
2014-06-14 10:46:18 ----HD---- C:\Program Files\WindowsApps
2014-06-14 10:46:18 ----D---- C:\WINDOWS\AppReadiness
2014-06-13 04:48:11 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-13 04:48:10 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-13 04:47:39 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2014-06-13 04:47:35 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2014-06-13 04:46:00 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2014-06-13 04:45:59 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-06-13 04:11:54 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-06-13 04:11:53 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-06-11 22:47:44 ----D---- C:\WINDOWS\system32\catroot2
2014-06-09 22:16:09 ----D---- C:\Users\Tomáš\AppData\Roaming\vlc
2014-06-09 19:25:50 ----D---- C:\Program Files (x86)\µTorrent
2014-06-09 13:53:38 ----D---- C:\Program Files (x86)\The Witcher 2 Enhanced Edition
2014-06-09 12:21:14 ----D---- C:\Program Files (x86)\GOG.com
2014-06-05 14:59:23 ----RSD---- C:\WINDOWS\assembly
2014-06-04 22:12:45 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2014-06-04 22:10:24 ----SHD---- C:\WINDOWS\Installer
2014-06-04 22:10:13 ----D---- C:\WINDOWS\ShellNew
2014-06-04 22:10:00 ----A---- C:\WINDOWS\win.ini
2014-06-04 22:09:23 ----D---- C:\Program Files\Common Files\microsoft shared
2014-06-04 22:04:55 ----RSD---- C:\WINDOWS\Fonts
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-06-04 22:04:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-06-04 18:37:50 ----SD---- C:\ProgramData\Microsoft
2014-06-04 18:35:24 ----D---- C:\Program Files\Common Files\System
2014-06-04 18:33:03 ----HD---- C:\ProgramData
2014-06-03 22:53:33 ----D---- C:\WINDOWS\system32\Tasks
2014-05-31 07:13:24 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-30 01:07:51 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2014-05-30 01:07:38 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2014-05-22 11:20:56 ----D---- C:\Program Files\Lenovo
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-04-21 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-04-21 208416]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-04-30 677360]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-11-21 39008]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2013-12-24 21184]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-04-21 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-16 1039096]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-16 423240]
R1 dtsoftbus01;@oem69.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-02-22 283064]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [2014-04-08 31648]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-04-21 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-04-21 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-16 85328]
R3 ACPIVPC;@oem56.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-11-21 33560]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-09-05 1390904]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-04-23 69088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-05-16 64624]
R3 NETwNe64;@oem9.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-08-23 3345376]
R3 NVHDA;@oem67.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-06-13 12860888]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-05-30 20256]
R3 nvvad_WaveExtensible;@oem87.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 PTSimBus;@oem75.inf,%PTSimBus.SVCDESC%;PenTablet Bus Enumerator; C:\WINDOWS\System32\drivers\PTSimBus.sys [2014-03-08 32128]
R3 rtsuvc;@oem38.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-07-19 8247640]
R3 SaiK0CC3;SaiK0CC3; C:\WINDOWS\system32\DRIVERS\SaiK0CC3.sys [2012-09-20 180584]
R3 SaiMini;SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [2013-04-30 25120]
R3 SaiNtBus;SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [2013-04-30 52640]
R3 SaiU0CC3;SaiU0CC3; C:\WINDOWS\System32\drivers\SaiU0CC3.sys [2012-09-20 47208]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2013-06-03 33008]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-06-03 530672]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 btmaux;@oem70.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\WINDOWS\system32\DRIVERS\btmaux.sys [2013-07-22 140600]
S3 MotioninJoyXFilter;@oem71.inf,%MotioninJoyXFilter.ServiceName%;MotioninJoy Virtual Xinput device Filter Driver; C:\WINDOWS\System32\drivers\MijXfilt.sys [2012-05-12 121416]
S3 PTSimHid;@oem74.inf,%PTSimHid.SVCDESC%;PenTablet Simulated HID MiniDriver; C:\WINDOWS\System32\drivers\PTSimHid.sys [2014-03-08 22912]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 Tablet2k;Serial Tablet Port Driver; C:\WINDOWS\System32\Drivers\Tablet2k.sys []
S3 TClass2k;@oem73.inf,%TClass2k.SvcDesc%;Tablet Class Driver; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [2014-03-08 32128]
S3 UCTblHid;@oem73.inf,%UCTblHid.SvcDesc%;HID Tablet Port Driver; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [2014-03-08 27520]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-21 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-08-26 1157496]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2011-10-19 423424]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-08-29 626416]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-04-30 15344]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-05-16 131544]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-18 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-16 366552]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-05-30 1631008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-05-30 21055432]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-06-13 933208]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2014-05-13 76888]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-08-29 149744]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-06-13 411936]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [2013-11-21 68368]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2014-05-03 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2014-05-03 79360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe []
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-26 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-08-29 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-05-29 543424]
S3 Survarium Update Service;Survarium Update Service; C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe [2014-06-15 77432]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
winlog.exe nelze spustit chybí *.dll
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: winlog.exe nelze spustit chybí *.dll
Zdravím!
V podstatě můžete.
V podstatě můžete.
Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/
Ulozte nejlepe na Plochu a rozbalte
Spustte kliknutim na mbar
Nyni postupne kliknete na Next a Update
Po dokonceni update (aktualizace) databaze kliknete opet na Next
Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
PC bude restartovan
Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: winlog.exe nelze spustit chybí *.dll
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.07.0.1012
(c) Malwarebytes Corporation 2011-2012
OS version: 6.3.9200 Windows 8.1 x64
Account is Administrative
Internet Explorer version: 11.0.9600.17126
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.195000 GHz
Memory total: 17123532800, free: 14221975552
Downloaded database version: v2014.06.18.06
Downloaded database version: v2014.06.02.01
=======================================
Initializing...
------------ Kernel report ------------
06/18/2014 18:30:59
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kd.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\System32\drivers\werkernel.sys
\SystemRoot\System32\drivers\CLFS.SYS
\SystemRoot\System32\drivers\tm.sys
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\system32\CI.dll
\SystemRoot\System32\drivers\msrpc.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\System32\Drivers\acpiex.sys
\SystemRoot\System32\Drivers\WppRecorder.sys
\SystemRoot\System32\drivers\ACPI.sys
\SystemRoot\System32\drivers\WMILIB.SYS
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\msisadrv.sys
\SystemRoot\System32\drivers\pci.sys
\SystemRoot\System32\drivers\vdrvroot.sys
\SystemRoot\system32\drivers\pdc.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\System32\drivers\spaceport.sys
\SystemRoot\System32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\System32\drivers\iaStorA.sys
\SystemRoot\System32\drivers\storport.sys
\SystemRoot\System32\drivers\EhStorClass.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\System32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Wof.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\DRIVERS\wfplwfs.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\System32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\SmartDefragDriver.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\DRIVERS\LhdX64.sys
\SystemRoot\System32\drivers\intelpep.sys
\SystemRoot\System32\drivers\disk.sys
\SystemRoot\System32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\aswVmm.sys
\SystemRoot\System32\Drivers\aswRvrt.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\drivers\dtsoftbus01.sys
\SystemRoot\system32\drivers\aswSnx.sys
\SystemRoot\system32\drivers\aswSP.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\BasicRender.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\System32\drivers\BasicDisplay.sys
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\aswRdr2.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\drivers\npsvctrig.sys
\SystemRoot\System32\drivers\mssmbios.sys
\??\C:\WINDOWS\system32\drivers\HWiNFO64A.SYS
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\ahcache.sys
\SystemRoot\system32\drivers\SaiBus.sys
\SystemRoot\System32\drivers\CompositeBus.sys
\SystemRoot\system32\DRIVERS\kdnic.sys
\SystemRoot\System32\drivers\umbus.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\System32\drivers\HDAudBus.sys
\SystemRoot\System32\drivers\USBXHCI.SYS
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\System32\drivers\ucx01000.sys
\SystemRoot\System32\drivers\HECIx64.sys
\SystemRoot\System32\drivers\usbehci.sys
\SystemRoot\System32\drivers\USBPORT.SYS
\SystemRoot\system32\DRIVERS\L1C63x64.sys
\SystemRoot\system32\DRIVERS\NETwew00.sys
\SystemRoot\System32\drivers\vwifibus.sys
\SystemRoot\System32\drivers\i8042prt.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\System32\drivers\kbdclass.sys
\SystemRoot\System32\drivers\mouclass.sys
\SystemRoot\System32\drivers\AcpiVpc.sys
\SystemRoot\System32\drivers\CmBatt.sys
\SystemRoot\System32\drivers\BATTC.SYS
\SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys
\SystemRoot\System32\drivers\wmiacpi.sys
\SystemRoot\System32\drivers\intelppm.sys
\SystemRoot\system32\drivers\nvvad64v.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\drivers\NdisVirtualBus.sys
\SystemRoot\System32\drivers\swenum.sys
\SystemRoot\System32\drivers\PTSimBus.sys
\SystemRoot\System32\drivers\rdpbus.sys
\SystemRoot\System32\drivers\SaiMini.sys
\SystemRoot\System32\drivers\HIDCLASS.SYS
\SystemRoot\System32\drivers\HIDPARSE.SYS
\SystemRoot\System32\drivers\usbhub.sys
\SystemRoot\System32\drivers\cdrom.sys
\SystemRoot\system32\drivers\nvhda64v.sys
\SystemRoot\System32\drivers\UsbHub3.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\System32\drivers\kbdhid.sys
\SystemRoot\System32\drivers\mouhid.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\Drivers\dump_iaStorA.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\system32\DRIVERS\iBtFltCoex.sys
\SystemRoot\system32\DRIVERS\btmhsf.sys
\SystemRoot\System32\Drivers\BTHUSB.sys
\SystemRoot\System32\Drivers\bthport.sys
\SystemRoot\System32\drivers\SaiU0CC3.sys
\SystemRoot\System32\drivers\hidusb.sys
\SystemRoot\System32\drivers\usbccgp.sys
\SystemRoot\system32\DRIVERS\SaiK0CC3.sys
\SystemRoot\system32\DRIVERS\rtsuvc.sys
\SystemRoot\System32\drivers\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\aswMonFlt.sys
\SystemRoot\system32\drivers\aswStm.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\System32\drivers\condrv.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\aswHwid.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\drivers\Ndu.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\System32\drivers\WUDFRd.sys
\SystemRoot\System32\drivers\mshidumdf.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffe001cc0f1670
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\00000035\
Lower Device Object: 0xffffe001c9e03060
Lower Device Driver Name: \Driver\iaStorA\
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffe001cc0f1670, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffe001cc0f0a40, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffe001cc0f0040, DeviceName: Unknown, DriverName: \Driver\LHDmgr\
DevicePointer: 0xffffe001cc0f1670, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffffe001c9e03060, DeviceName: \Device\00000035\, DriverName: \Driver\iaStorA\
------------ End ----------
Alternate DeviceName: Unknown, DriverName: \Driver\LHDmgr\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
File "C:\Windows\System32\drivers\1394ohci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\1394ohci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\acpi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\acpi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\acpipagr.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\acpipagr.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\acpipmi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\acpipmi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\acpitime.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\acpitime.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\AGP440.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\AGP440.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\amdk8.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\amdk8.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\amdppm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\amdppm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\atapi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\atapi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\ataport.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\ataport.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\intelpep.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\intelpep.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\intelppm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\intelppm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BasicRender.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BasicRender.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\battc.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\battc.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BtaMPM.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BtaMPM.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BthAvrcpTg.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BthAvrcpTg.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\bthenum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\bthenum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\bthhfenum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\bthhfenum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BthhfHid.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BthhfHid.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BthLEEnum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BthLEEnum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\bthmodem.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\bthmodem.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\bthpan.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\bthpan.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BTHUSB.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BTHUSB.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\cdrom.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\cdrom.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\EhStorTcgDrv.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\EhStorTcgDrv.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\errdev.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\errdev.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\fdc.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\fdc.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\flpydisk.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\flpydisk.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\fxppm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\fxppm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\parport.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\parport.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\pci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\pci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\pciide.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\pciide.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\pciidex.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\pciidex.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\pcmcia.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\pcmcia.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\portcls.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\portcls.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\processr.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\processr.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\monitor.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\monitor.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\mouclass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\mouclass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\mouhid.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\mouhid.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BasicDisplay.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BasicDisplay.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\circlass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\circlass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sdbus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sdbus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\wacompen.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\wacompen.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sdstor.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sdstor.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\serenum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\serenum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\serial.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\serial.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sermouse.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sermouse.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sfloppy.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sfloppy.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\stornvme.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\stornvme.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\swenum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\swenum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\terminpt.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\terminpt.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\tpm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\tpm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\TsUsbGD.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\TsUsbGD.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\uaspstor.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\uaspstor.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\UCX01000.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\UCX01000.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\uefi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\uefi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\umbus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\umbus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\umpass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\umpass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\USBAUDIO.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\USBAUDIO.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbccgp.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbccgp.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbcir.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbcir.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbd.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbd.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbehci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbehci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbhub.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbhub.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\USBHUB3.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\USBHUB3.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbohci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbohci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbport.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbport.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbprint.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbprint.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\USBSTOR.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\USBSTOR.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbuhci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbuhci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\USBXHCI.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\USBXHCI.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\vdrvroot.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\vdrvroot.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\vhdmp.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\vhdmp.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\volmgr.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\volmgr.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\vwifibus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\vwifibus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\mssmbios.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\mssmbios.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\MTConfig.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\MTConfig.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\npsvctrig.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\npsvctrig.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\wmiacpi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\wmiacpi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\rdpbus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\rdpbus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\rfcomm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\rfcomm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sbp2port.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sbp2port.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\CmBatt.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\CmBatt.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\CompositeBus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\CompositeBus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\disk.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\disk.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\drmk.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\drmk.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\drmkaud.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\drmkaud.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\dumpsd.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\dumpsd.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidbatt.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidbatt.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidbth.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidbth.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidclass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidclass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidi2c.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidi2c.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidparse.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidparse.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidusb.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidusb.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\i8042prt.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\i8042prt.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\msgpiowin32.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\msgpiowin32.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\msisadrv.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\msisadrv.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\isapnp.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\isapnp.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\kbdclass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\kbdclass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\kbdhid.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\kbdhid.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\kdnic.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\kdnic.sys" is compressed (flags = 1)
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
This drive is a GPT Drive.
MBR Signature: 55AA
Disk Signature: FCB79505
GPT Protective MBR Partition information:
Partition 0 type is EFI-GPT (0xee)
Partition is NOT ACTIVE.
Partition starts at LBA: 1 Numsec = 4294967295
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
GPT Partition information:
GPT Header Signature 4546492050415254
GPT Header Revision 65536 Size 92 CRC 3753116377
GPT Header CurrentLba = 1 BackupLba 1953525167
GPT Header FirstUsableLba 34 LastUsableLba 1953525134
GPT Header Guid dcb84d6b-e854-4edd-be2d-b17a59c22e3e
GPT Header Contains 128 partition entries starting at LBA 2
GPT Header Partition entry size = 128
Backup GPT header Signature 4546492050415254
Backup GPT header Revision 65536 Size 92 CRC 3753116377
Backup GPT header CurrentLba = 1953525167 BackupLba 1
Backup GPT header FirstUsableLba 34 LastUsableLba 1953525134
Backup GPT header Guid dcb84d6b-e854-4edd-be2d-b17a59c22e3e
Backup GPT header Contains 128 partition entries starting at LBA 1953525135
Backup GPT header Partition entry size = 128
Partition 0 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
Partition ID 990bb3d-5184-4908-8ab1-af7ce3bbd5a2
FirstLBA 2048 Last LBA 2050047
Attributes 1
Partition Name Basic data partition
Partition 1 Type c12a7328-f81f-11d2-ba4b-0a0c93ec93b
Partition ID 79200acd-ee4a-42cd-9e7f-9c6dbd763f14
FirstLBA 2050048 Last LBA 2582527
Attributes 1
Partition Name EFI system partition
GPT Partition 1 is bootable
Partition 2 Type bfbfafe7-a34f-448a-9a5b-6213eb736c22
Partition ID c42b6bed-4446-4f80-bad8-e856b4a71e
FirstLBA 2582528 Last LBA 4630527
Attributes 1
Partition Name Basic data partition
Partition 3 Type e3c9e316-b5c-4db8-817d-f92df0215ae
Partition ID 829177e9-69a2-4dbc-bfcc-f98d49551f9
FirstLBA 4630528 Last LBA 4892671
Attributes 0
Partition Name Microsoft reserved partition
Partition 4 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Partition ID 1c442a39-3b30-4262-8979-e92b38b2adb
FirstLBA 4892672 Last LBA 1869658111
Attributes 0
Partition Name Basic data partition
Partition 5 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
Partition ID 3f15efd5-e653-4c61-8b1a-ef3111a8cf18
FirstLBA 1869658112 Last LBA 1870374911
Attributes 1
Partition Name
Partition 6 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Partition ID a0d6ed8b-2519-4dad-85e4-1b26246deb5d
FirstLBA 1870374912 Last LBA 1922803711
Attributes 0
Partition Name Basic data partition
Partition 7 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
Partition ID a9032384-a744-45c0-9c9b-4245db3ec
FirstLBA 1922803712 Last LBA 1953523711
Attributes 1
Partition Name Basic data partition
Disk Size: 1000204886016 bytes
Sector size: 512 bytes
Done!
Infected: HKU\S-1-5-21-261235275-3806468573-1540367909-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Windows Drivers --> [Backdoor.Agent.E]
Infected: C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\windrv.exe --> [Backdoor.Agent.E]
Infected: C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\windrv.exe --> [Backdoor.Agent.E]
Scan finished
Creating System Restore point...
Cleaning up...
Removal scheduling successful. System shutdown needed.
System shutdown occurred
=======================================
Malwarebytes Anti-Rootkit BETA 1.07.0.1012
(c) Malwarebytes Corporation 2011-2012
OS version: 6.3.9200 Windows 8.1 x64
Account is Administrative
Internet Explorer version: 11.0.9600.17126
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.195000 GHz
Memory total: 17123532800, free: 14221975552
Downloaded database version: v2014.06.18.06
Downloaded database version: v2014.06.02.01
=======================================
Initializing...
------------ Kernel report ------------
06/18/2014 18:30:59
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kd.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\System32\drivers\werkernel.sys
\SystemRoot\System32\drivers\CLFS.SYS
\SystemRoot\System32\drivers\tm.sys
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\system32\CI.dll
\SystemRoot\System32\drivers\msrpc.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\System32\Drivers\acpiex.sys
\SystemRoot\System32\Drivers\WppRecorder.sys
\SystemRoot\System32\drivers\ACPI.sys
\SystemRoot\System32\drivers\WMILIB.SYS
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\msisadrv.sys
\SystemRoot\System32\drivers\pci.sys
\SystemRoot\System32\drivers\vdrvroot.sys
\SystemRoot\system32\drivers\pdc.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\System32\drivers\spaceport.sys
\SystemRoot\System32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\System32\drivers\iaStorA.sys
\SystemRoot\System32\drivers\storport.sys
\SystemRoot\System32\drivers\EhStorClass.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\System32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Wof.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\DRIVERS\wfplwfs.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\System32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\SmartDefragDriver.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\DRIVERS\LhdX64.sys
\SystemRoot\System32\drivers\intelpep.sys
\SystemRoot\System32\drivers\disk.sys
\SystemRoot\System32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\aswVmm.sys
\SystemRoot\System32\Drivers\aswRvrt.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\drivers\dtsoftbus01.sys
\SystemRoot\system32\drivers\aswSnx.sys
\SystemRoot\system32\drivers\aswSP.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\BasicRender.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\System32\drivers\BasicDisplay.sys
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\aswRdr2.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\drivers\npsvctrig.sys
\SystemRoot\System32\drivers\mssmbios.sys
\??\C:\WINDOWS\system32\drivers\HWiNFO64A.SYS
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\ahcache.sys
\SystemRoot\system32\drivers\SaiBus.sys
\SystemRoot\System32\drivers\CompositeBus.sys
\SystemRoot\system32\DRIVERS\kdnic.sys
\SystemRoot\System32\drivers\umbus.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\System32\drivers\HDAudBus.sys
\SystemRoot\System32\drivers\USBXHCI.SYS
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\System32\drivers\ucx01000.sys
\SystemRoot\System32\drivers\HECIx64.sys
\SystemRoot\System32\drivers\usbehci.sys
\SystemRoot\System32\drivers\USBPORT.SYS
\SystemRoot\system32\DRIVERS\L1C63x64.sys
\SystemRoot\system32\DRIVERS\NETwew00.sys
\SystemRoot\System32\drivers\vwifibus.sys
\SystemRoot\System32\drivers\i8042prt.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\System32\drivers\kbdclass.sys
\SystemRoot\System32\drivers\mouclass.sys
\SystemRoot\System32\drivers\AcpiVpc.sys
\SystemRoot\System32\drivers\CmBatt.sys
\SystemRoot\System32\drivers\BATTC.SYS
\SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys
\SystemRoot\System32\drivers\wmiacpi.sys
\SystemRoot\System32\drivers\intelppm.sys
\SystemRoot\system32\drivers\nvvad64v.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\drivers\NdisVirtualBus.sys
\SystemRoot\System32\drivers\swenum.sys
\SystemRoot\System32\drivers\PTSimBus.sys
\SystemRoot\System32\drivers\rdpbus.sys
\SystemRoot\System32\drivers\SaiMini.sys
\SystemRoot\System32\drivers\HIDCLASS.SYS
\SystemRoot\System32\drivers\HIDPARSE.SYS
\SystemRoot\System32\drivers\usbhub.sys
\SystemRoot\System32\drivers\cdrom.sys
\SystemRoot\system32\drivers\nvhda64v.sys
\SystemRoot\System32\drivers\UsbHub3.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\System32\drivers\kbdhid.sys
\SystemRoot\System32\drivers\mouhid.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\Drivers\dump_iaStorA.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\system32\DRIVERS\iBtFltCoex.sys
\SystemRoot\system32\DRIVERS\btmhsf.sys
\SystemRoot\System32\Drivers\BTHUSB.sys
\SystemRoot\System32\Drivers\bthport.sys
\SystemRoot\System32\drivers\SaiU0CC3.sys
\SystemRoot\System32\drivers\hidusb.sys
\SystemRoot\System32\drivers\usbccgp.sys
\SystemRoot\system32\DRIVERS\SaiK0CC3.sys
\SystemRoot\system32\DRIVERS\rtsuvc.sys
\SystemRoot\System32\drivers\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\aswMonFlt.sys
\SystemRoot\system32\drivers\aswStm.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\System32\drivers\condrv.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\aswHwid.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\drivers\Ndu.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\System32\drivers\WUDFRd.sys
\SystemRoot\System32\drivers\mshidumdf.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffe001cc0f1670
Upper Device Driver Name: \Driver\disk\
Lower Device Name: \Device\00000035\
Lower Device Object: 0xffffe001c9e03060
Lower Device Driver Name: \Driver\iaStorA\
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffe001cc0f1670, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffe001cc0f0a40, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffe001cc0f0040, DeviceName: Unknown, DriverName: \Driver\LHDmgr\
DevicePointer: 0xffffe001cc0f1670, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffffe001c9e03060, DeviceName: \Device\00000035\, DriverName: \Driver\iaStorA\
------------ End ----------
Alternate DeviceName: Unknown, DriverName: \Driver\LHDmgr\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
File "C:\Windows\System32\drivers\1394ohci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\1394ohci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\acpi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\acpi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\acpipagr.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\acpipagr.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\acpipmi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\acpipmi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\acpitime.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\acpitime.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\AGP440.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\AGP440.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\amdk8.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\amdk8.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\amdppm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\amdppm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\atapi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\atapi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\ataport.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\ataport.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\intelpep.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\intelpep.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\intelppm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\intelppm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BasicRender.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BasicRender.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\battc.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\battc.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BtaMPM.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BtaMPM.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BthAvrcpTg.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BthAvrcpTg.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\bthenum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\bthenum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\bthhfenum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\bthhfenum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BthhfHid.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BthhfHid.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BthLEEnum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BthLEEnum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\bthmodem.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\bthmodem.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\bthpan.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\bthpan.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BTHUSB.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BTHUSB.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\cdrom.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\cdrom.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\EhStorTcgDrv.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\EhStorTcgDrv.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\errdev.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\errdev.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\fdc.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\fdc.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\flpydisk.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\flpydisk.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\fxppm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\fxppm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\parport.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\parport.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\pci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\pci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\pciide.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\pciide.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\pciidex.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\pciidex.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\pcmcia.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\pcmcia.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\portcls.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\portcls.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\processr.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\processr.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\monitor.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\monitor.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\mouclass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\mouclass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\mouhid.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\mouhid.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\BasicDisplay.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\BasicDisplay.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\circlass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\circlass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sdbus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sdbus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\wacompen.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\wacompen.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sdstor.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sdstor.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\serenum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\serenum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\serial.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\serial.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sermouse.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sermouse.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sfloppy.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sfloppy.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\stornvme.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\stornvme.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\swenum.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\swenum.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\terminpt.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\terminpt.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\tpm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\tpm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\TsUsbGD.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\TsUsbGD.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\uaspstor.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\uaspstor.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\UCX01000.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\UCX01000.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\uefi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\uefi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\umbus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\umbus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\umpass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\umpass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\USBAUDIO.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\USBAUDIO.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbccgp.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbccgp.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbcir.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbcir.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbd.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbd.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbehci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbehci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbhub.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbhub.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\USBHUB3.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\USBHUB3.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbohci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbohci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbport.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbport.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbprint.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbprint.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\USBSTOR.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\USBSTOR.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\usbuhci.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\usbuhci.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\USBXHCI.SYS" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\USBXHCI.SYS" is compressed (flags = 1)
File "C:\Windows\System32\drivers\vdrvroot.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\vdrvroot.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\vhdmp.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\vhdmp.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\volmgr.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\volmgr.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\vwifibus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\vwifibus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\mssmbios.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\mssmbios.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\MTConfig.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\MTConfig.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\npsvctrig.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\npsvctrig.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\wmiacpi.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\wmiacpi.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\rdpbus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\rdpbus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\rfcomm.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\rfcomm.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\sbp2port.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\sbp2port.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\CmBatt.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\CmBatt.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\CompositeBus.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\CompositeBus.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\disk.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\disk.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\drmk.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\drmk.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\drmkaud.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\drmkaud.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\dumpsd.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\dumpsd.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidbatt.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidbatt.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidbth.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidbth.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidclass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidclass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidi2c.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidi2c.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidparse.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidparse.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\hidusb.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\hidusb.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\i8042prt.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\i8042prt.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\msgpiowin32.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\msgpiowin32.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\msisadrv.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\msisadrv.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\isapnp.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\isapnp.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\kbdclass.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\kbdclass.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\kbdhid.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\kbdhid.sys" is compressed (flags = 1)
File "C:\Windows\System32\drivers\kdnic.sys" is compressed (flags = 1)
File "C:\WINDOWS\SYSTEM32\drivers\kdnic.sys" is compressed (flags = 1)
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
This drive is a GPT Drive.
MBR Signature: 55AA
Disk Signature: FCB79505
GPT Protective MBR Partition information:
Partition 0 type is EFI-GPT (0xee)
Partition is NOT ACTIVE.
Partition starts at LBA: 1 Numsec = 4294967295
Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0
GPT Partition information:
GPT Header Signature 4546492050415254
GPT Header Revision 65536 Size 92 CRC 3753116377
GPT Header CurrentLba = 1 BackupLba 1953525167
GPT Header FirstUsableLba 34 LastUsableLba 1953525134
GPT Header Guid dcb84d6b-e854-4edd-be2d-b17a59c22e3e
GPT Header Contains 128 partition entries starting at LBA 2
GPT Header Partition entry size = 128
Backup GPT header Signature 4546492050415254
Backup GPT header Revision 65536 Size 92 CRC 3753116377
Backup GPT header CurrentLba = 1953525167 BackupLba 1
Backup GPT header FirstUsableLba 34 LastUsableLba 1953525134
Backup GPT header Guid dcb84d6b-e854-4edd-be2d-b17a59c22e3e
Backup GPT header Contains 128 partition entries starting at LBA 1953525135
Backup GPT header Partition entry size = 128
Partition 0 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
Partition ID 990bb3d-5184-4908-8ab1-af7ce3bbd5a2
FirstLBA 2048 Last LBA 2050047
Attributes 1
Partition Name Basic data partition
Partition 1 Type c12a7328-f81f-11d2-ba4b-0a0c93ec93b
Partition ID 79200acd-ee4a-42cd-9e7f-9c6dbd763f14
FirstLBA 2050048 Last LBA 2582527
Attributes 1
Partition Name EFI system partition
GPT Partition 1 is bootable
Partition 2 Type bfbfafe7-a34f-448a-9a5b-6213eb736c22
Partition ID c42b6bed-4446-4f80-bad8-e856b4a71e
FirstLBA 2582528 Last LBA 4630527
Attributes 1
Partition Name Basic data partition
Partition 3 Type e3c9e316-b5c-4db8-817d-f92df0215ae
Partition ID 829177e9-69a2-4dbc-bfcc-f98d49551f9
FirstLBA 4630528 Last LBA 4892671
Attributes 0
Partition Name Microsoft reserved partition
Partition 4 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Partition ID 1c442a39-3b30-4262-8979-e92b38b2adb
FirstLBA 4892672 Last LBA 1869658111
Attributes 0
Partition Name Basic data partition
Partition 5 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
Partition ID 3f15efd5-e653-4c61-8b1a-ef3111a8cf18
FirstLBA 1869658112 Last LBA 1870374911
Attributes 1
Partition Name
Partition 6 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
Partition ID a0d6ed8b-2519-4dad-85e4-1b26246deb5d
FirstLBA 1870374912 Last LBA 1922803711
Attributes 0
Partition Name Basic data partition
Partition 7 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
Partition ID a9032384-a744-45c0-9c9b-4245db3ec
FirstLBA 1922803712 Last LBA 1953523711
Attributes 1
Partition Name Basic data partition
Disk Size: 1000204886016 bytes
Sector size: 512 bytes
Done!
Infected: HKU\S-1-5-21-261235275-3806468573-1540367909-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Windows Drivers --> [Backdoor.Agent.E]
Infected: C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\windrv.exe --> [Backdoor.Agent.E]
Infected: C:\Users\Tomáš\AppData\Roaming\WinUpdate\c\windrv.exe --> [Backdoor.Agent.E]
Scan finished
Creating System Restore point...
Cleaning up...
Removal scheduling successful. System shutdown needed.
System shutdown occurred
=======================================
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: winlog.exe nelze spustit chybí *.dll
Rootkit byl smazán. PC ještě dočistíme od AdWarů a zbytečností. Spusťte tuto utlitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
MBAR můžete odinstalovat.
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
MBAR můžete odinstalovat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: winlog.exe nelze spustit chybí *.dll
# AdwCleaner v3.212 - Report created 18/06/2014 at 20:02:00
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Tomáš - JIMPI_LENOVO
# Running from : C:\Users\Tomáš\Desktop\adwcleaner_3.212.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
File Deleted : C:\Users\TOM~1\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-codedownloader.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-codedownloader
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-enabler.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-enabler
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-firefoxinstaller.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-firefoxinstaller
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-updater.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-updater
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-validator.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-validator
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Plus-HD-7.6
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v29.0.1 (cs)
[ File : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default\prefs.js ]
-\\ Google Chrome v
*************************
AdwCleaner[R0].txt - [1684 octets] - [18/06/2014 19:59:44]
AdwCleaner[R1].txt - [1744 octets] - [18/06/2014 20:00:33]
AdwCleaner[S0].txt - [1633 octets] - [18/06/2014 20:02:00]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1693 octets] ##########
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : Tomáš - JIMPI_LENOVO
# Running from : C:\Users\Tomáš\Desktop\adwcleaner_3.212.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
File Deleted : C:\Users\TOM~1\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-codedownloader.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-codedownloader
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-enabler.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-enabler
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-firefoxinstaller.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-firefoxinstaller
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-updater.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-updater
File Deleted : C:\WINDOWS\Tasks\Plus-HD-7.6-validator.job
File Deleted : C:\WINDOWS\System32\Tasks\Plus-HD-7.6-validator
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Plus-HD-7.6
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17126
-\\ Mozilla Firefox v29.0.1 (cs)
[ File : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default\prefs.js ]
-\\ Google Chrome v
*************************
AdwCleaner[R0].txt - [1684 octets] - [18/06/2014 19:59:44]
AdwCleaner[R1].txt - [1744 octets] - [18/06/2014 20:00:33]
AdwCleaner[S0].txt - [1633 octets] - [18/06/2014 20:02:00]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1693 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: winlog.exe nelze spustit chybí *.dll
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: winlog.exe nelze spustit chybí *.dll
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2014-06-18 20:08:36
Microsoft Windows 8.1
System drive C: has 333 GB (37%) free of 911 GB
Total RAM: 16330 MB (88% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:08:38, on 18. 6. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera_crashreporter.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Survarium Update Service - Unknown owner - C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11519 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 373734546336
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {970cd258-77b3-4c48-b4683051519e1df0}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe"
"C:\WINDOWS\System32\Drivers\WTSRV.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 978f3351-b074-406c-a899-57c723e9f3b0 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7cd16c25-9ef4-42d4-96b1-818dd80340bf -SystemEventPortName:HostProcess-7809b5c2-9ae5-4ca5-a31c-d25cf52149fb -IoCancelEventPortName:HostProcess-f0952f01-85fc-4c5d-9ed7-b0d9d23fd52a -NonStateChangingEventPortName:HostProcess-4da973cc-ac6e-4cf1-b1e7-fd27c268daac -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c3b8731c-a34d-46a3-92ee-ecb424c4acb9 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskeng.exe {71390BA5-908F-4767-8C27-2E6FE85E68B5}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe" /STARTUP
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\RTFTrack.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher /crash-reporter-parent-id=6032
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=gpu-process --channel="6032.0.2066763342\292739466" --crash-reporter-pid=6072 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15,40 --gpu-vendor-id=0x10de --gpu-device-id=0x0fcd --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4043 --crash-reporter-pid=6072 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.2.895364439\103676167" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.3.177347358\215045556" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.4.605411293\733254058" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.6.1336045704\48143334" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.8.1208703547\171198546" /prefetch:673131151
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\SmartTechnology\Software\ProfilerU.exe"
"C:\Program Files\SmartTechnology\Software\SaiMfd.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\System32\WTClient.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.14.826678098\1630629118" /prefetch:673131151
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
wmiadap.exe /F /T /R
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.15.568674887\1664790917" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 592 596 604 65536 600
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Tomáš\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Opera scheduled Autoupdate 1392984530.job - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-24 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-04-21 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 877720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-24 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-21 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 704664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-07-19 6340312]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-04-30 36352]
"UMonit64"=C:\windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-11-21 17097200]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-11-21 193008]
"ProfilerU"=C:\Program Files\SmartTechnology\Software\ProfilerU.exe [2013-04-16 454144]
"SaiMfd"=C:\Program Files\SmartTechnology\Software\SaiMfd.exe [2013-04-16 158208]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-06-03 2985200]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-05-30 2352072]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2014-05-30 1279480]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-09-19 7818040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Xvid"=C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-05 3890208]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"WTClient"=C:\WINDOWS\system32\WTClient.exe [2014-03-08 40832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-06-18 20:00:06 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-06-18 19:59:42 ----D---- C:\AdwCleaner
2014-06-18 18:31:03 ----D---- C:\ProgramData\Malwarebytes
2014-06-18 18:30:59 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-18 18:30:59 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-06-18 18:30:28 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-06-18 18:25:36 ----D---- C:\Program Files\CCleaner
2014-06-18 18:07:36 ----D---- C:\rsit
2014-06-18 18:07:36 ----D---- C:\Program Files\trend micro
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-18 10:45:52 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-18 10:45:50 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-18 10:44:26 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-18 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvopencl.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispgenco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2014-06-18 00:05:35 ----D---- C:\Program Files (x86)\The Witcher Enhanced Edition Director's Cut
2014-06-15 16:53:35 ----D---- C:\Program Files (x86)\Spintires
2014-06-13 11:15:56 ----D---- C:\Program Files (x86)\Fraps
2014-06-11 22:49:27 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 22:49:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 22:49:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 22:49:18 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 22:49:17 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 22:49:16 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\twinui.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-11 22:48:53 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\win32k.sys
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\localspl.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\services.exe
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfps.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 22:48:23 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-09 19:31:43 ----D---- C:\Program Files (x86)\Postal 2 Share The Pain
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files\DESIGNER
2014-06-04 22:04:25 ----D---- C:\Program Files\Microsoft.NET
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2014-06-04 22:02:10 ----SHD---- C:\Config.Msi
2014-06-04 18:38:00 ----D---- C:\WINDOWS\PCHEALTH
2014-06-04 18:38:00 ----D---- C:\Program Files\Microsoft SQL Server
2014-06-04 18:35:06 ----D---- C:\Program Files\Microsoft Analysis Services
2014-06-04 18:35:05 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2014-06-04 18:35:00 ----D---- C:\Program Files\Microsoft Office
2014-06-04 18:34:55 ----RHD---- C:\MSOCache
2014-06-04 18:33:03 ----D---- C:\ProgramData\Microsoft Help
2014-06-04 14:17:29 ----D---- C:\Program Files (x86)\Murdered Soul Suspect
2014-06-04 14:17:17 ----D---- C:\Users\Tomáš\AppData\Roaming\WinUpdate
2014-06-02 23:27:39 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2014-06-02 23:27:39 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2014-05-29 09:06:39 ----D---- C:\Program Files (x86)\Survarium
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispgenco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2014-05-26 17:44:48 ----D---- C:\ProgramData\Orbit
2014-05-26 13:54:55 ----D---- C:\Users\Tomáš\AppData\Roaming\Tropico 5
2014-05-26 13:50:13 ----D---- C:\Program Files (x86)\Tropico 5
2014-05-26 00:37:00 ----D---- C:\Program Files (x86)\Ubisoft Game Launcher
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispgenco6433781.dll
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispco6433781.dll
2014-05-22 12:41:25 ----D---- C:\Program Files (x86)\Wolfenstein The New Order
======List of files/folders modified in the last 1 month======
2014-06-18 20:08:38 ----D---- C:\WINDOWS\Prefetch
2014-06-18 20:08:13 ----D---- C:\WINDOWS\Temp
2014-06-18 20:07:02 ----RD---- C:\Program Files (x86)
2014-06-18 20:03:05 ----D---- C:\ProgramData\NVIDIA
2014-06-18 20:02:00 ----D---- C:\WINDOWS\Tasks
2014-06-18 20:02:00 ----D---- C:\WINDOWS\system32\Tasks
2014-06-18 20:00:06 ----D---- C:\WINDOWS\SysWOW64
2014-06-18 20:00:00 ----D---- C:\WINDOWS\system32\sru
2014-06-18 19:00:17 ----D---- C:\WINDOWS\Microsoft.NET
2014-06-18 18:48:47 ----RD---- C:\WINDOWS\System32
2014-06-18 18:48:47 ----D---- C:\WINDOWS\Inf
2014-06-18 18:48:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-18 18:41:59 ----D---- C:\WINDOWS\system32\drivers
2014-06-18 18:41:59 ----D---- C:\WINDOWS\debug
2014-06-18 18:41:22 ----SHD---- C:\System Volume Information
2014-06-18 18:31:03 ----HD---- C:\ProgramData
2014-06-18 18:25:36 ----RD---- C:\Program Files
2014-06-18 10:53:43 ----D---- C:\Program Files (x86)\Opera
2014-06-18 10:52:52 ----D---- C:\WINDOWS\system32\config
2014-06-18 10:48:26 ----D---- C:\WINDOWS\WinSxS
2014-06-18 10:46:03 ----D---- C:\Program Files\Internet Explorer
2014-06-18 10:46:03 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-18 10:46:02 ----RD---- C:\WINDOWS\ToastData
2014-06-18 10:46:02 ----D---- C:\WINDOWS\WinStore
2014-06-18 10:46:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\oobe
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-18 10:46:00 ----D---- C:\WINDOWS\system32\DriverStore
2014-06-18 10:45:56 ----D---- C:\WINDOWS\CbsTemp
2014-06-18 10:43:55 ----D---- C:\WINDOWS\system32\MRT
2014-06-18 10:42:47 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-18 10:42:43 ----D---- C:\Windows
2014-06-18 10:42:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\wbem
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\cs-CZ
2014-06-18 10:39:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-06-18 10:37:36 ----D---- C:\Program Files\NVIDIA Corporation
2014-06-16 23:34:44 ----D---- C:\Program Files (x86)\Steam
2014-06-15 22:23:27 ----D---- C:\WINDOWS\SYSWOW64\directx
2014-06-15 22:23:24 ----HD---- C:\WINDOWS\msdownld.tmp
2014-06-15 17:11:38 ----D---- C:\Users\Tomáš\AppData\Roaming\SpinTires
2014-06-14 10:46:18 ----HD---- C:\Program Files\WindowsApps
2014-06-14 10:46:18 ----D---- C:\WINDOWS\AppReadiness
2014-06-13 04:48:11 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-13 04:48:10 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-13 04:47:39 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2014-06-13 04:47:35 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2014-06-13 04:46:00 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2014-06-13 04:45:59 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-06-13 04:11:54 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-06-13 04:11:53 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-06-11 22:47:44 ----D---- C:\WINDOWS\system32\catroot2
2014-06-09 22:16:09 ----D---- C:\Users\Tomáš\AppData\Roaming\vlc
2014-06-09 19:25:50 ----D---- C:\Program Files (x86)\µTorrent
2014-06-09 13:53:38 ----D---- C:\Program Files (x86)\The Witcher 2 Enhanced Edition
2014-06-09 12:21:14 ----D---- C:\Program Files (x86)\GOG.com
2014-06-05 14:59:23 ----RSD---- C:\WINDOWS\assembly
2014-06-04 22:12:45 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2014-06-04 22:10:24 ----SHD---- C:\WINDOWS\Installer
2014-06-04 22:10:13 ----D---- C:\WINDOWS\ShellNew
2014-06-04 22:10:00 ----A---- C:\WINDOWS\win.ini
2014-06-04 22:09:23 ----D---- C:\Program Files\Common Files\microsoft shared
2014-06-04 22:04:55 ----RSD---- C:\WINDOWS\Fonts
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-06-04 22:04:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-06-04 18:37:50 ----SD---- C:\ProgramData\Microsoft
2014-06-04 18:35:24 ----D---- C:\Program Files\Common Files\System
2014-05-31 07:13:24 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-30 01:07:51 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2014-05-30 01:07:38 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2014-05-22 11:20:56 ----D---- C:\Program Files\Lenovo
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-04-21 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-04-21 208416]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-04-30 677360]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-11-21 39008]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2013-12-24 21184]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-04-21 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-16 1039096]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-16 423240]
R1 dtsoftbus01;@oem69.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-02-22 283064]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [2014-04-08 31648]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-04-21 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-04-21 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-16 85328]
R3 ACPIVPC;@oem56.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-11-21 33560]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-09-05 1390904]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-04-23 69088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-05-16 64624]
R3 NETwNe64;@oem9.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-08-23 3345376]
R3 NVHDA;@oem67.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-06-13 12860888]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-05-30 20256]
R3 nvvad_WaveExtensible;@oem87.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 PTSimBus;@oem75.inf,%PTSimBus.SVCDESC%;PenTablet Bus Enumerator; C:\WINDOWS\System32\drivers\PTSimBus.sys [2014-03-08 32128]
R3 rtsuvc;@oem38.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-07-19 8247640]
R3 SaiK0CC3;SaiK0CC3; C:\WINDOWS\system32\DRIVERS\SaiK0CC3.sys [2012-09-20 180584]
R3 SaiMini;SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [2013-04-30 25120]
R3 SaiNtBus;SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [2013-04-30 52640]
R3 SaiU0CC3;SaiU0CC3; C:\WINDOWS\System32\drivers\SaiU0CC3.sys [2012-09-20 47208]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2013-06-03 33008]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-06-03 530672]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 btmaux;@oem70.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\WINDOWS\system32\DRIVERS\btmaux.sys [2013-07-22 140600]
S3 MotioninJoyXFilter;@oem71.inf,%MotioninJoyXFilter.ServiceName%;MotioninJoy Virtual Xinput device Filter Driver; C:\WINDOWS\System32\drivers\MijXfilt.sys [2012-05-12 121416]
S3 PTSimHid;@oem74.inf,%PTSimHid.SVCDESC%;PenTablet Simulated HID MiniDriver; C:\WINDOWS\System32\drivers\PTSimHid.sys [2014-03-08 22912]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 Tablet2k;Serial Tablet Port Driver; C:\WINDOWS\System32\Drivers\Tablet2k.sys []
S3 TClass2k;@oem73.inf,%TClass2k.SvcDesc%;Tablet Class Driver; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [2014-03-08 32128]
S3 UCTblHid;@oem73.inf,%UCTblHid.SvcDesc%;HID Tablet Port Driver; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [2014-03-08 27520]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-21 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-08-26 1157496]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2011-10-19 423424]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-08-29 626416]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-04-30 15344]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-05-16 131544]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-18 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-16 366552]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-05-30 1631008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-05-30 21055432]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-06-13 933208]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2014-05-13 76888]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-08-29 149744]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-06-13 411936]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [2013-11-21 68368]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2014-05-03 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2014-05-03 79360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-26 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-08-29 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-05-29 543424]
S3 Survarium Update Service;Survarium Update Service; C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe [2014-06-15 77432]
-----------------EOF-----------------
Run by Tomáš at 2014-06-18 20:08:36
Microsoft Windows 8.1
System drive C: has 333 GB (37%) free of 911 GB
Total RAM: 16330 MB (88% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:08:38, on 18. 6. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera_crashreporter.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Survarium Update Service - Unknown owner - C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11519 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 373734546336
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {970cd258-77b3-4c48-b4683051519e1df0}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe"
"C:\WINDOWS\System32\Drivers\WTSRV.EXE"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 978f3351-b074-406c-a899-57c723e9f3b0 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7cd16c25-9ef4-42d4-96b1-818dd80340bf -SystemEventPortName:HostProcess-7809b5c2-9ae5-4ca5-a31c-d25cf52149fb -IoCancelEventPortName:HostProcess-f0952f01-85fc-4c5d-9ed7-b0d9d23fd52a -NonStateChangingEventPortName:HostProcess-4da973cc-ac6e-4cf1-b1e7-fd27c268daac -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c3b8731c-a34d-46a3-92ee-ecb424c4acb9 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
taskeng.exe {71390BA5-908F-4767-8C27-2E6FE85E68B5}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe" /STARTUP
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\RTFTrack.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher /crash-reporter-parent-id=6032
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=gpu-process --channel="6032.0.2066763342\292739466" --crash-reporter-pid=6072 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15,40 --gpu-vendor-id=0x10de --gpu-device-id=0x0fcd --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4043 --crash-reporter-pid=6072 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.2.895364439\103676167" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.3.177347358\215045556" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.4.605411293\733254058" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.6.1336045704\48143334" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.8.1208703547\171198546" /prefetch:673131151
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\SmartTechnology\Software\ProfilerU.exe"
"C:\Program Files\SmartTechnology\Software\SaiMfd.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\System32\WTClient.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.14.826678098\1630629118" /prefetch:673131151
"C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17044_x64__8wekyb3d8bbwe\glcnd.exe" -ServerName:Microsoft.Reader.AppXtszmc7avrx02s7n8gch63tzwg517wd9k.mca
wmiadap.exe /F /T /R
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=6072 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="6032.15.568674887\1664790917" /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 592 596 604 65536 600
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Tomáš\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Opera scheduled Autoupdate 1392984530.job - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-24 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-04-21 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 877720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-24 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-21 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 704664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-07-19 6340312]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-04-30 36352]
"UMonit64"=C:\windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-11-21 17097200]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-11-21 193008]
"ProfilerU"=C:\Program Files\SmartTechnology\Software\ProfilerU.exe [2013-04-16 454144]
"SaiMfd"=C:\Program Files\SmartTechnology\Software\SaiMfd.exe [2013-04-16 158208]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-06-03 2985200]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-05-30 2352072]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2014-05-30 1279480]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-09-19 7818040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Xvid"=C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-05 3890208]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"WTClient"=C:\WINDOWS\system32\WTClient.exe [2014-03-08 40832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-06-18 20:00:06 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-06-18 19:59:42 ----D---- C:\AdwCleaner
2014-06-18 18:31:03 ----D---- C:\ProgramData\Malwarebytes
2014-06-18 18:30:59 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-18 18:30:59 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-06-18 18:30:28 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-06-18 18:25:36 ----D---- C:\Program Files\CCleaner
2014-06-18 18:07:36 ----D---- C:\rsit
2014-06-18 18:07:36 ----D---- C:\Program Files\trend micro
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-18 10:45:52 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-18 10:45:50 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-18 10:44:26 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-18 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvopencl.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispgenco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2014-06-18 00:05:35 ----D---- C:\Program Files (x86)\The Witcher Enhanced Edition Director's Cut
2014-06-15 16:53:35 ----D---- C:\Program Files (x86)\Spintires
2014-06-13 11:15:56 ----D---- C:\Program Files (x86)\Fraps
2014-06-11 22:49:27 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 22:49:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 22:49:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 22:49:18 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 22:49:17 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 22:49:16 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\twinui.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-11 22:48:53 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\win32k.sys
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\localspl.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\services.exe
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfps.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 22:48:23 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-09 19:31:43 ----D---- C:\Program Files (x86)\Postal 2 Share The Pain
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files\DESIGNER
2014-06-04 22:04:25 ----D---- C:\Program Files\Microsoft.NET
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2014-06-04 22:02:10 ----SHD---- C:\Config.Msi
2014-06-04 18:38:00 ----D---- C:\WINDOWS\PCHEALTH
2014-06-04 18:38:00 ----D---- C:\Program Files\Microsoft SQL Server
2014-06-04 18:35:06 ----D---- C:\Program Files\Microsoft Analysis Services
2014-06-04 18:35:05 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2014-06-04 18:35:00 ----D---- C:\Program Files\Microsoft Office
2014-06-04 18:34:55 ----RHD---- C:\MSOCache
2014-06-04 18:33:03 ----D---- C:\ProgramData\Microsoft Help
2014-06-04 14:17:29 ----D---- C:\Program Files (x86)\Murdered Soul Suspect
2014-06-04 14:17:17 ----D---- C:\Users\Tomáš\AppData\Roaming\WinUpdate
2014-06-02 23:27:39 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2014-06-02 23:27:39 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2014-05-29 09:06:39 ----D---- C:\Program Files (x86)\Survarium
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispgenco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2014-05-26 17:44:48 ----D---- C:\ProgramData\Orbit
2014-05-26 13:54:55 ----D---- C:\Users\Tomáš\AppData\Roaming\Tropico 5
2014-05-26 13:50:13 ----D---- C:\Program Files (x86)\Tropico 5
2014-05-26 00:37:00 ----D---- C:\Program Files (x86)\Ubisoft Game Launcher
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispgenco6433781.dll
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispco6433781.dll
2014-05-22 12:41:25 ----D---- C:\Program Files (x86)\Wolfenstein The New Order
======List of files/folders modified in the last 1 month======
2014-06-18 20:08:38 ----D---- C:\WINDOWS\Prefetch
2014-06-18 20:08:13 ----D---- C:\WINDOWS\Temp
2014-06-18 20:07:02 ----RD---- C:\Program Files (x86)
2014-06-18 20:03:05 ----D---- C:\ProgramData\NVIDIA
2014-06-18 20:02:00 ----D---- C:\WINDOWS\Tasks
2014-06-18 20:02:00 ----D---- C:\WINDOWS\system32\Tasks
2014-06-18 20:00:06 ----D---- C:\WINDOWS\SysWOW64
2014-06-18 20:00:00 ----D---- C:\WINDOWS\system32\sru
2014-06-18 19:00:17 ----D---- C:\WINDOWS\Microsoft.NET
2014-06-18 18:48:47 ----RD---- C:\WINDOWS\System32
2014-06-18 18:48:47 ----D---- C:\WINDOWS\Inf
2014-06-18 18:48:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-18 18:41:59 ----D---- C:\WINDOWS\system32\drivers
2014-06-18 18:41:59 ----D---- C:\WINDOWS\debug
2014-06-18 18:41:22 ----SHD---- C:\System Volume Information
2014-06-18 18:31:03 ----HD---- C:\ProgramData
2014-06-18 18:25:36 ----RD---- C:\Program Files
2014-06-18 10:53:43 ----D---- C:\Program Files (x86)\Opera
2014-06-18 10:52:52 ----D---- C:\WINDOWS\system32\config
2014-06-18 10:48:26 ----D---- C:\WINDOWS\WinSxS
2014-06-18 10:46:03 ----D---- C:\Program Files\Internet Explorer
2014-06-18 10:46:03 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-18 10:46:02 ----RD---- C:\WINDOWS\ToastData
2014-06-18 10:46:02 ----D---- C:\WINDOWS\WinStore
2014-06-18 10:46:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\oobe
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-18 10:46:00 ----D---- C:\WINDOWS\system32\DriverStore
2014-06-18 10:45:56 ----D---- C:\WINDOWS\CbsTemp
2014-06-18 10:43:55 ----D---- C:\WINDOWS\system32\MRT
2014-06-18 10:42:47 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-18 10:42:43 ----D---- C:\Windows
2014-06-18 10:42:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\wbem
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\cs-CZ
2014-06-18 10:39:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-06-18 10:37:36 ----D---- C:\Program Files\NVIDIA Corporation
2014-06-16 23:34:44 ----D---- C:\Program Files (x86)\Steam
2014-06-15 22:23:27 ----D---- C:\WINDOWS\SYSWOW64\directx
2014-06-15 22:23:24 ----HD---- C:\WINDOWS\msdownld.tmp
2014-06-15 17:11:38 ----D---- C:\Users\Tomáš\AppData\Roaming\SpinTires
2014-06-14 10:46:18 ----HD---- C:\Program Files\WindowsApps
2014-06-14 10:46:18 ----D---- C:\WINDOWS\AppReadiness
2014-06-13 04:48:11 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-13 04:48:10 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-13 04:47:39 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2014-06-13 04:47:35 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2014-06-13 04:46:00 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2014-06-13 04:45:59 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-06-13 04:11:54 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-06-13 04:11:53 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-06-11 22:47:44 ----D---- C:\WINDOWS\system32\catroot2
2014-06-09 22:16:09 ----D---- C:\Users\Tomáš\AppData\Roaming\vlc
2014-06-09 19:25:50 ----D---- C:\Program Files (x86)\µTorrent
2014-06-09 13:53:38 ----D---- C:\Program Files (x86)\The Witcher 2 Enhanced Edition
2014-06-09 12:21:14 ----D---- C:\Program Files (x86)\GOG.com
2014-06-05 14:59:23 ----RSD---- C:\WINDOWS\assembly
2014-06-04 22:12:45 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2014-06-04 22:10:24 ----SHD---- C:\WINDOWS\Installer
2014-06-04 22:10:13 ----D---- C:\WINDOWS\ShellNew
2014-06-04 22:10:00 ----A---- C:\WINDOWS\win.ini
2014-06-04 22:09:23 ----D---- C:\Program Files\Common Files\microsoft shared
2014-06-04 22:04:55 ----RSD---- C:\WINDOWS\Fonts
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-06-04 22:04:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-06-04 18:37:50 ----SD---- C:\ProgramData\Microsoft
2014-06-04 18:35:24 ----D---- C:\Program Files\Common Files\System
2014-05-31 07:13:24 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-30 01:07:51 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2014-05-30 01:07:38 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2014-05-22 11:20:56 ----D---- C:\Program Files\Lenovo
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-04-21 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-04-21 208416]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-04-30 677360]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-11-21 39008]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2013-12-24 21184]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-04-21 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-16 1039096]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-16 423240]
R1 dtsoftbus01;@oem69.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-02-22 283064]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [2014-04-08 31648]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-04-21 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-04-21 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-16 85328]
R3 ACPIVPC;@oem56.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-11-21 33560]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-09-05 1390904]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-04-23 69088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-05-16 64624]
R3 NETwNe64;@oem9.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-08-23 3345376]
R3 NVHDA;@oem67.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-06-13 12860888]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-05-30 20256]
R3 nvvad_WaveExtensible;@oem87.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 PTSimBus;@oem75.inf,%PTSimBus.SVCDESC%;PenTablet Bus Enumerator; C:\WINDOWS\System32\drivers\PTSimBus.sys [2014-03-08 32128]
R3 rtsuvc;@oem38.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-07-19 8247640]
R3 SaiK0CC3;SaiK0CC3; C:\WINDOWS\system32\DRIVERS\SaiK0CC3.sys [2012-09-20 180584]
R3 SaiMini;SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [2013-04-30 25120]
R3 SaiNtBus;SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [2013-04-30 52640]
R3 SaiU0CC3;SaiU0CC3; C:\WINDOWS\System32\drivers\SaiU0CC3.sys [2012-09-20 47208]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2013-06-03 33008]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-06-03 530672]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 btmaux;@oem70.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\WINDOWS\system32\DRIVERS\btmaux.sys [2013-07-22 140600]
S3 MotioninJoyXFilter;@oem71.inf,%MotioninJoyXFilter.ServiceName%;MotioninJoy Virtual Xinput device Filter Driver; C:\WINDOWS\System32\drivers\MijXfilt.sys [2012-05-12 121416]
S3 PTSimHid;@oem74.inf,%PTSimHid.SVCDESC%;PenTablet Simulated HID MiniDriver; C:\WINDOWS\System32\drivers\PTSimHid.sys [2014-03-08 22912]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 Tablet2k;Serial Tablet Port Driver; C:\WINDOWS\System32\Drivers\Tablet2k.sys []
S3 TClass2k;@oem73.inf,%TClass2k.SvcDesc%;Tablet Class Driver; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [2014-03-08 32128]
S3 UCTblHid;@oem73.inf,%UCTblHid.SvcDesc%;HID Tablet Port Driver; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [2014-03-08 27520]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-21 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-08-26 1157496]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2011-10-19 423424]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-08-29 626416]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-04-30 15344]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-05-16 131544]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-18 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-16 366552]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-05-30 1631008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-05-30 21055432]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-06-13 933208]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2014-05-13 76888]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-08-29 149744]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-06-13 411936]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [2013-11-21 68368]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2014-05-03 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2014-05-03 79360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-26 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-08-29 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-05-29 543424]
S3 Survarium Update Service;Survarium Update Service; C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe [2014-06-15 77432]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: winlog.exe nelze spustit chybí *.dll
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: winlog.exe nelze spustit chybí *.dll
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tomáš at 2014-06-18 21:45:22
Microsoft Windows 8.1
System drive C: has 387 GB (43%) free of 911 GB
Total RAM: 16330 MB (88% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:45:24, on 18. 6. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera_crashreporter.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Survarium Update Service - Unknown owner - C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11299 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 1054413698624
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {183066e1-fb0e-4909-8a0e668b5e8f7ff6}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe"
"C:\WINDOWS\System32\Drivers\WTSRV.EXE"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-cb10a0e5-1bb8-4f3a-a257-e4bae025864f -SystemEventPortName:HostProcess-a7333ea8-a54c-4c43-8de0-6dace47e5d31 -IoCancelEventPortName:HostProcess-4fd520c2-1406-4f12-9864-7598e6a3ce78 -NonStateChangingEventPortName:HostProcess-a9f80dd6-5915-4849-b077-5286cd529807 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:381e21f2-c3c2-4214-b9d8-9149125d749f -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 978f3351-b074-406c-a899-57c723e9f3b0 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
taskeng.exe {E2DBFAA9-ECAA-4B9D-8CF7-5844E9405F4F}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17031_none_fa50b3979b1bcb4a\TiWorker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe" /STARTUP
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\06182014_214158.log
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 592 596 604 65536 600
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\RTFTrack.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\SmartTechnology\Software\ProfilerU.exe"
"C:\Program Files\SmartTechnology\Software\SaiMfd.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher /crash-reporter-parent-id=3308
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Windows\System32\WTClient.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=gpu-process --channel="3308.0.1986115567\233569130" --crash-reporter-pid=292 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15,40 --gpu-vendor-id=0x10de --gpu-device-id=0x0fcd --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4043 --crash-reporter-pid=292 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.2.1788338312\1823184643" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.3.350509703\2077462895" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.4.1095818324\516457767" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.6.1595408071\674042271" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.7.169061065\582302216" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.8.971997671\1058639578" /prefetch:673131151
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Tomáš\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Opera scheduled Autoupdate 1392984530.job - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-24 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-04-21 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 877720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-24 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-21 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 704664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-07-19 6340312]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-04-30 36352]
"UMonit64"=C:\windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-11-21 17097200]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-11-21 193008]
"ProfilerU"=C:\Program Files\SmartTechnology\Software\ProfilerU.exe [2013-04-16 454144]
"SaiMfd"=C:\Program Files\SmartTechnology\Software\SaiMfd.exe [2013-04-16 158208]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-06-03 2985200]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-05-30 2352072]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2014-05-30 1279480]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-09-19 7818040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Xvid"=C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-05 3890208]
"WTClient"=C:\WINDOWS\system32\WTClient.exe [2014-03-08 40832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-06-18 21:41:58 ----D---- C:\_OTM
2014-06-18 20:00:06 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-06-18 19:59:42 ----D---- C:\AdwCleaner
2014-06-18 18:31:03 ----D---- C:\ProgramData\Malwarebytes
2014-06-18 18:30:59 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-18 18:30:59 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-06-18 18:30:28 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-06-18 18:25:36 ----D---- C:\Program Files\CCleaner
2014-06-18 18:07:36 ----D---- C:\rsit
2014-06-18 18:07:36 ----D---- C:\Program Files\trend micro
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-18 10:45:52 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-18 10:45:50 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-18 10:44:26 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-18 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvopencl.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispgenco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2014-06-18 00:05:35 ----D---- C:\Program Files (x86)\The Witcher Enhanced Edition Director's Cut
2014-06-13 11:15:56 ----D---- C:\Program Files (x86)\Fraps
2014-06-11 22:49:27 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 22:49:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 22:49:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 22:49:18 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 22:49:17 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 22:49:16 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\twinui.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-11 22:48:53 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\win32k.sys
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\localspl.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\services.exe
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfps.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 22:48:23 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-09 19:31:43 ----D---- C:\Program Files (x86)\Postal 2 Share The Pain
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files\DESIGNER
2014-06-04 22:04:25 ----D---- C:\Program Files\Microsoft.NET
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2014-06-04 22:02:10 ----SHD---- C:\Config.Msi
2014-06-04 18:38:00 ----D---- C:\WINDOWS\PCHEALTH
2014-06-04 18:38:00 ----D---- C:\Program Files\Microsoft SQL Server
2014-06-04 18:35:06 ----D---- C:\Program Files\Microsoft Analysis Services
2014-06-04 18:35:05 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2014-06-04 18:35:00 ----D---- C:\Program Files\Microsoft Office
2014-06-04 18:34:55 ----RHD---- C:\MSOCache
2014-06-04 18:33:03 ----D---- C:\ProgramData\Microsoft Help
2014-06-04 14:17:17 ----D---- C:\Users\Tomáš\AppData\Roaming\WinUpdate
2014-06-02 23:27:39 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2014-06-02 23:27:39 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2014-05-29 09:06:39 ----D---- C:\Program Files (x86)\Survarium
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispgenco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2014-05-26 17:44:48 ----D---- C:\ProgramData\Orbit
2014-05-26 13:54:55 ----D---- C:\Users\Tomáš\AppData\Roaming\Tropico 5
2014-05-26 13:50:13 ----D---- C:\Program Files (x86)\Tropico 5
2014-05-26 00:37:00 ----D---- C:\Program Files (x86)\Ubisoft Game Launcher
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispgenco6433781.dll
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispco6433781.dll
2014-05-22 12:41:25 ----D---- C:\Program Files (x86)\Wolfenstein The New Order
======List of files/folders modified in the last 1 month======
2014-06-18 21:45:00 ----D---- C:\WINDOWS\Prefetch
2014-06-18 21:44:20 ----D---- C:\WINDOWS\Inf
2014-06-18 21:44:14 ----D---- C:\WINDOWS\Temp
2014-06-18 21:43:57 ----D---- C:\ProgramData\NVIDIA
2014-06-18 21:42:56 ----D---- C:\Windows
2014-06-18 21:41:05 ----D---- C:\Program Files (x86)\µTorrent
2014-06-18 21:00:00 ----D---- C:\WINDOWS\system32\sru
2014-06-18 20:56:36 ----D---- C:\Users\Tomáš\AppData\Roaming\DarkSoulsII
2014-06-18 20:56:02 ----RD---- C:\Program Files (x86)
2014-06-18 20:55:20 ----D---- C:\Users\Tomáš\AppData\Roaming\SpinTires
2014-06-18 20:09:30 ----RD---- C:\WINDOWS\System32
2014-06-18 20:09:30 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-18 20:02:00 ----D---- C:\WINDOWS\Tasks
2014-06-18 20:02:00 ----D---- C:\WINDOWS\system32\Tasks
2014-06-18 20:00:06 ----D---- C:\WINDOWS\SysWOW64
2014-06-18 19:00:17 ----D---- C:\WINDOWS\Microsoft.NET
2014-06-18 18:41:59 ----D---- C:\WINDOWS\system32\drivers
2014-06-18 18:41:59 ----D---- C:\WINDOWS\debug
2014-06-18 18:41:22 ----SHD---- C:\System Volume Information
2014-06-18 18:31:03 ----HD---- C:\ProgramData
2014-06-18 18:25:36 ----RD---- C:\Program Files
2014-06-18 10:53:43 ----D---- C:\Program Files (x86)\Opera
2014-06-18 10:52:52 ----D---- C:\WINDOWS\system32\config
2014-06-18 10:48:26 ----D---- C:\WINDOWS\WinSxS
2014-06-18 10:46:03 ----D---- C:\Program Files\Internet Explorer
2014-06-18 10:46:03 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-18 10:46:02 ----RD---- C:\WINDOWS\ToastData
2014-06-18 10:46:02 ----D---- C:\WINDOWS\WinStore
2014-06-18 10:46:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\oobe
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-18 10:46:00 ----D---- C:\WINDOWS\system32\DriverStore
2014-06-18 10:45:56 ----D---- C:\WINDOWS\CbsTemp
2014-06-18 10:43:55 ----D---- C:\WINDOWS\system32\MRT
2014-06-18 10:42:47 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-18 10:42:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\wbem
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\cs-CZ
2014-06-18 10:39:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-06-18 10:37:36 ----D---- C:\Program Files\NVIDIA Corporation
2014-06-16 23:34:44 ----D---- C:\Program Files (x86)\Steam
2014-06-15 22:23:27 ----D---- C:\WINDOWS\SYSWOW64\directx
2014-06-14 10:46:18 ----HD---- C:\Program Files\WindowsApps
2014-06-14 10:46:18 ----D---- C:\WINDOWS\AppReadiness
2014-06-13 04:48:11 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-13 04:48:10 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-13 04:47:39 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2014-06-13 04:47:35 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2014-06-13 04:46:00 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2014-06-13 04:45:59 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-06-13 04:11:54 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-06-13 04:11:53 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-06-11 22:47:44 ----D---- C:\WINDOWS\system32\catroot2
2014-06-09 22:16:09 ----D---- C:\Users\Tomáš\AppData\Roaming\vlc
2014-06-09 13:53:38 ----D---- C:\Program Files (x86)\The Witcher 2 Enhanced Edition
2014-06-09 12:21:14 ----D---- C:\Program Files (x86)\GOG.com
2014-06-05 14:59:23 ----RSD---- C:\WINDOWS\assembly
2014-06-04 22:12:45 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2014-06-04 22:10:24 ----SHD---- C:\WINDOWS\Installer
2014-06-04 22:10:13 ----D---- C:\WINDOWS\ShellNew
2014-06-04 22:10:00 ----A---- C:\WINDOWS\win.ini
2014-06-04 22:09:23 ----D---- C:\Program Files\Common Files\microsoft shared
2014-06-04 22:04:55 ----RSD---- C:\WINDOWS\Fonts
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-06-04 22:04:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-06-04 18:37:50 ----SD---- C:\ProgramData\Microsoft
2014-06-04 18:35:24 ----D---- C:\Program Files\Common Files\System
2014-05-31 07:13:24 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-30 01:07:51 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2014-05-30 01:07:38 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2014-05-22 11:20:56 ----D---- C:\Program Files\Lenovo
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-04-21 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-04-21 208416]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-04-30 677360]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-11-21 39008]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2013-12-24 21184]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-04-21 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-16 1039096]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-16 423240]
R1 dtsoftbus01;@oem69.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-02-22 283064]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [2014-04-08 31648]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-04-21 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-04-21 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-16 85328]
R3 ACPIVPC;@oem56.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-11-21 33560]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-09-05 1390904]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-04-23 69088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-05-16 64624]
R3 NETwNe64;@oem9.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-08-23 3345376]
R3 NVHDA;@oem67.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-06-13 12860888]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-05-30 20256]
R3 nvvad_WaveExtensible;@oem87.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 PTSimBus;@oem75.inf,%PTSimBus.SVCDESC%;PenTablet Bus Enumerator; C:\WINDOWS\System32\drivers\PTSimBus.sys [2014-03-08 32128]
R3 rtsuvc;@oem38.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-07-19 8247640]
R3 SaiK0CC3;SaiK0CC3; C:\WINDOWS\system32\DRIVERS\SaiK0CC3.sys [2012-09-20 180584]
R3 SaiMini;SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [2013-04-30 25120]
R3 SaiNtBus;SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [2013-04-30 52640]
R3 SaiU0CC3;SaiU0CC3; C:\WINDOWS\System32\drivers\SaiU0CC3.sys [2012-09-20 47208]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2013-06-03 33008]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-06-03 530672]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 btmaux;@oem70.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\WINDOWS\system32\DRIVERS\btmaux.sys [2013-07-22 140600]
S3 MotioninJoyXFilter;@oem71.inf,%MotioninJoyXFilter.ServiceName%;MotioninJoy Virtual Xinput device Filter Driver; C:\WINDOWS\System32\drivers\MijXfilt.sys [2012-05-12 121416]
S3 PTSimHid;@oem74.inf,%PTSimHid.SVCDESC%;PenTablet Simulated HID MiniDriver; C:\WINDOWS\System32\drivers\PTSimHid.sys [2014-03-08 22912]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 Tablet2k;Serial Tablet Port Driver; C:\WINDOWS\System32\Drivers\Tablet2k.sys []
S3 TClass2k;@oem73.inf,%TClass2k.SvcDesc%;Tablet Class Driver; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [2014-03-08 32128]
S3 UCTblHid;@oem73.inf,%UCTblHid.SvcDesc%;HID Tablet Port Driver; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [2014-03-08 27520]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-21 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-08-26 1157496]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2011-10-19 423424]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-08-29 626416]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-18 157128]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-05-30 1631008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-05-30 21055432]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-06-13 933208]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2014-05-13 76888]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-08-29 149744]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-06-13 411936]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [2013-11-21 68368]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-04-30 15344]
S2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-05-16 131544]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-16 169432]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-16 366552]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2014-05-03 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2014-05-03 79360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-26 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-08-29 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-05-29 543424]
S3 Survarium Update Service;Survarium Update Service; C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe [2014-06-15 77432]
-----------------EOF-----------------
Run by Tomáš at 2014-06-18 21:45:22
Microsoft Windows 8.1
System drive C: has 387 GB (43%) free of 911 GB
Total RAM: 16330 MB (88% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:45:24, on 18. 6. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
C:\Windows\SysWOW64\UMonit64.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera_crashreporter.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Survarium Update Service - Unknown owner - C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11299 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
"dwm.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\WLANExt.exe 1054413698624
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
dashost.exe {183066e1-fb0e-4909-8a0e668b5e8f7ff6}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe"
"C:\WINDOWS\System32\Drivers\WTSRV.EXE"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-cb10a0e5-1bb8-4f3a-a257-e4bae025864f -SystemEventPortName:HostProcess-a7333ea8-a54c-4c43-8de0-6dace47e5d31 -IoCancelEventPortName:HostProcess-4fd520c2-1406-4f12-9864-7598e6a3ce78 -NonStateChangingEventPortName:HostProcess-a9f80dd6-5915-4849-b077-5286cd529807 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:381e21f2-c3c2-4214-b9d8-9149125d749f -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 978f3351-b074-406c-a899-57c723e9f3b0 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
taskeng.exe {E2DBFAA9-ECAA-4B9D-8CF7-5844E9405F4F}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17031_none_fa50b3979b1bcb4a\TiWorker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Smart Defrag 3\SmartDefrag.exe" /STARTUP
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\06182014_214158.log
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 592 596 604 65536 600
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Windows\RTFTrack.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
"C:\Windows\SysWOW64\UMonit64.exe"
"C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\SmartTechnology\Software\ProfilerU.exe"
"C:\Program Files\SmartTechnology\Software\SaiMfd.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --ran-launcher /crash-reporter-parent-id=3308
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Windows\System32\WTClient.exe"
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=gpu-process --channel="3308.0.1986115567\233569130" --crash-reporter-pid=292 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15,40 --gpu-vendor-id=0x10de --gpu-device-id=0x0fcd --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4043 --crash-reporter-pid=292 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.2.1788338312\1823184643" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.3.350509703\2077462895" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --extension-process --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.4.1095818324\516457767" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.6.1595408071\674042271" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.7.169061065\582302216" /prefetch:673131151
"C:\Program Files (x86)\Opera\22.0.1471.70\opera.exe" --type=renderer --disable-direct-npapi-requests --lang=cs --disable-client-side-phishing-detection --with-feature:enhanced-autofill --crash-reporter-pid=292 --enable-pinch --enable-threaded-compositing --enable-delegated-renderer --enable-software-compositing --channel="3308.8.971997671\1058639578" /prefetch:673131151
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Tomáš\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\Opera scheduled Autoupdate 1392984530.job - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL
C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\mmnxxx79.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-02-24 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-04-21 581824]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 877720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-02-24 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-04-14 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-21 436600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2012-10-01 704664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-04-14 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-05-28 13545032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-05-20 1308232]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-07-19 6340312]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-04-30 36352]
"UMonit64"=C:\windows\SysWOW64\UMonit64.exe [2013-04-09 40960]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-11-21 17097200]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-11-21 193008]
"ProfilerU"=C:\Program Files\SmartTechnology\Software\ProfilerU.exe [2013-04-16 454144]
"SaiMfd"=C:\Program Files\SmartTechnology\Software\SaiMfd.exe [2013-04-16 158208]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-06-03 2985200]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-05-30 2352072]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2014-05-30 1279480]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-09-19 7818040]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Xvid"=C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-06-05 3890208]
"WTClient"=C:\WINDOWS\system32\WTClient.exe [2014-03-08 40832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.XVID"=xvidvfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-06-18 21:41:58 ----D---- C:\_OTM
2014-06-18 20:00:06 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-06-18 19:59:42 ----D---- C:\AdwCleaner
2014-06-18 18:31:03 ----D---- C:\ProgramData\Malwarebytes
2014-06-18 18:30:59 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-18 18:30:59 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2014-06-18 18:30:28 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2014-06-18 18:25:36 ----D---- C:\Program Files\CCleaner
2014-06-18 18:07:36 ----D---- C:\rsit
2014-06-18 18:07:36 ----D---- C:\Program Files\trend micro
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-18 10:45:52 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-18 10:45:52 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-18 10:45:50 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-18 10:45:49 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-18 10:44:26 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-18 10:39:14 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvopencl.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispgenco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvdispco6434043.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcuda.dll
2014-06-18 10:36:11 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2014-06-18 10:36:10 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2014-06-18 00:05:35 ----D---- C:\Program Files (x86)\The Witcher Enhanced Edition Director's Cut
2014-06-13 11:15:56 ----D---- C:\Program Files (x86)\Fraps
2014-06-11 22:49:27 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 22:49:26 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-06-11 22:49:25 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-06-11 22:49:24 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-06-11 22:49:23 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-06-11 22:49:22 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-06-11 22:49:21 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-06-11 22:49:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 22:49:19 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-06-11 22:49:18 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-06-11 22:49:17 ----A---- C:\WINDOWS\system32\wininet.dll
2014-06-11 22:49:16 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 22:49:15 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 22:49:01 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-06-11 22:49:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-06-11 22:48:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\twinui.dll
2014-06-11 22:48:56 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-11 22:48:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-11 22:48:54 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-11 22:48:53 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-11 22:48:52 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-11 22:48:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-11 22:48:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\win32k.sys
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-06-11 22:48:49 ----A---- C:\WINDOWS\system32\localspl.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\services.exe
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-06-11 22:48:48 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-06-11 22:48:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-11 22:48:46 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfps.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-11 22:48:45 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-11 22:48:44 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-11 22:48:43 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 22:48:25 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 22:48:23 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 22:48:22 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-06-11 22:48:02 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-09 19:31:43 ----D---- C:\Program Files (x86)\Postal 2 Share The Pain
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files\DESIGNER
2014-06-04 22:04:25 ----D---- C:\Program Files\Microsoft.NET
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2014-06-04 22:02:10 ----SHD---- C:\Config.Msi
2014-06-04 18:38:00 ----D---- C:\WINDOWS\PCHEALTH
2014-06-04 18:38:00 ----D---- C:\Program Files\Microsoft SQL Server
2014-06-04 18:35:06 ----D---- C:\Program Files\Microsoft Analysis Services
2014-06-04 18:35:05 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2014-06-04 18:35:00 ----D---- C:\Program Files\Microsoft Office
2014-06-04 18:34:55 ----RHD---- C:\MSOCache
2014-06-04 18:33:03 ----D---- C:\ProgramData\Microsoft Help
2014-06-04 14:17:17 ----D---- C:\Users\Tomáš\AppData\Roaming\WinUpdate
2014-06-02 23:27:39 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2014-06-02 23:27:39 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2014-05-29 09:06:39 ----D---- C:\Program Files (x86)\Survarium
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispgenco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvdispco6433788.dll
2014-05-26 22:58:16 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2014-05-26 17:44:48 ----D---- C:\ProgramData\Orbit
2014-05-26 13:54:55 ----D---- C:\Users\Tomáš\AppData\Roaming\Tropico 5
2014-05-26 13:50:13 ----D---- C:\Program Files (x86)\Tropico 5
2014-05-26 00:37:00 ----D---- C:\Program Files (x86)\Ubisoft Game Launcher
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispgenco6433781.dll
2014-05-22 16:23:05 ----A---- C:\WINDOWS\system32\nvdispco6433781.dll
2014-05-22 12:41:25 ----D---- C:\Program Files (x86)\Wolfenstein The New Order
======List of files/folders modified in the last 1 month======
2014-06-18 21:45:00 ----D---- C:\WINDOWS\Prefetch
2014-06-18 21:44:20 ----D---- C:\WINDOWS\Inf
2014-06-18 21:44:14 ----D---- C:\WINDOWS\Temp
2014-06-18 21:43:57 ----D---- C:\ProgramData\NVIDIA
2014-06-18 21:42:56 ----D---- C:\Windows
2014-06-18 21:41:05 ----D---- C:\Program Files (x86)\µTorrent
2014-06-18 21:00:00 ----D---- C:\WINDOWS\system32\sru
2014-06-18 20:56:36 ----D---- C:\Users\Tomáš\AppData\Roaming\DarkSoulsII
2014-06-18 20:56:02 ----RD---- C:\Program Files (x86)
2014-06-18 20:55:20 ----D---- C:\Users\Tomáš\AppData\Roaming\SpinTires
2014-06-18 20:09:30 ----RD---- C:\WINDOWS\System32
2014-06-18 20:09:30 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-18 20:02:00 ----D---- C:\WINDOWS\Tasks
2014-06-18 20:02:00 ----D---- C:\WINDOWS\system32\Tasks
2014-06-18 20:00:06 ----D---- C:\WINDOWS\SysWOW64
2014-06-18 19:00:17 ----D---- C:\WINDOWS\Microsoft.NET
2014-06-18 18:41:59 ----D---- C:\WINDOWS\system32\drivers
2014-06-18 18:41:59 ----D---- C:\WINDOWS\debug
2014-06-18 18:41:22 ----SHD---- C:\System Volume Information
2014-06-18 18:31:03 ----HD---- C:\ProgramData
2014-06-18 18:25:36 ----RD---- C:\Program Files
2014-06-18 10:53:43 ----D---- C:\Program Files (x86)\Opera
2014-06-18 10:52:52 ----D---- C:\WINDOWS\system32\config
2014-06-18 10:48:26 ----D---- C:\WINDOWS\WinSxS
2014-06-18 10:46:03 ----D---- C:\Program Files\Internet Explorer
2014-06-18 10:46:03 ----D---- C:\Program Files (x86)\Internet Explorer
2014-06-18 10:46:02 ----RD---- C:\WINDOWS\ToastData
2014-06-18 10:46:02 ----D---- C:\WINDOWS\WinStore
2014-06-18 10:46:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\oobe
2014-06-18 10:46:01 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-18 10:46:00 ----D---- C:\WINDOWS\system32\DriverStore
2014-06-18 10:45:56 ----D---- C:\WINDOWS\CbsTemp
2014-06-18 10:43:55 ----D---- C:\WINDOWS\system32\MRT
2014-06-18 10:42:47 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-18 10:42:38 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\wbem
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\migration
2014-06-18 10:42:38 ----D---- C:\WINDOWS\system32\cs-CZ
2014-06-18 10:39:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-06-18 10:37:36 ----D---- C:\Program Files\NVIDIA Corporation
2014-06-16 23:34:44 ----D---- C:\Program Files (x86)\Steam
2014-06-15 22:23:27 ----D---- C:\WINDOWS\SYSWOW64\directx
2014-06-14 10:46:18 ----HD---- C:\Program Files\WindowsApps
2014-06-14 10:46:18 ----D---- C:\WINDOWS\AppReadiness
2014-06-13 04:48:11 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-06-13 04:48:10 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-06-13 04:47:39 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2014-06-13 04:47:35 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2014-06-13 04:46:00 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2014-06-13 04:45:59 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-06-13 04:11:57 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-06-13 04:11:54 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-06-13 04:11:53 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-06-13 04:11:53 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-06-11 22:47:44 ----D---- C:\WINDOWS\system32\catroot2
2014-06-09 22:16:09 ----D---- C:\Users\Tomáš\AppData\Roaming\vlc
2014-06-09 13:53:38 ----D---- C:\Program Files (x86)\The Witcher 2 Enhanced Edition
2014-06-09 12:21:14 ----D---- C:\Program Files (x86)\GOG.com
2014-06-05 14:59:23 ----RSD---- C:\WINDOWS\assembly
2014-06-04 22:12:45 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2014-06-04 22:10:24 ----SHD---- C:\WINDOWS\Installer
2014-06-04 22:10:13 ----D---- C:\WINDOWS\ShellNew
2014-06-04 22:10:00 ----A---- C:\WINDOWS\win.ini
2014-06-04 22:09:23 ----D---- C:\Program Files\Common Files\microsoft shared
2014-06-04 22:04:55 ----RSD---- C:\WINDOWS\Fonts
2014-06-04 22:04:41 ----D---- C:\Program Files\Common Files
2014-06-04 22:04:25 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-06-04 22:04:04 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-06-04 18:37:50 ----SD---- C:\ProgramData\Microsoft
2014-06-04 18:35:24 ----D---- C:\Program Files\Common Files\System
2014-05-31 07:13:24 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-30 09:32:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-30 01:07:51 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2014-05-30 01:07:38 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2014-05-22 11:20:56 ----D---- C:\Program Files\Lenovo
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-04-21 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-04-21 208416]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-04-30 677360]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-11-21 39008]
R0 SmartDefragDriver;SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [2013-12-24 21184]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-04-21 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-05-16 1039096]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-05-16 423240]
R1 dtsoftbus01;@oem69.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-02-22 283064]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [2014-04-08 31648]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-04-21 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-04-21 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-05-16 85328]
R3 ACPIVPC;@oem56.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-11-21 33560]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-09-05 1390904]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-04-23 69088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-05-28 3432776]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2013-05-16 64624]
R3 NETwNe64;@oem9.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-08-23 3345376]
R3 NVHDA;@oem67.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-06-13 12860888]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-05-30 20256]
R3 nvvad_WaveExtensible;@oem87.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 PTSimBus;@oem75.inf,%PTSimBus.SVCDESC%;PenTablet Bus Enumerator; C:\WINDOWS\System32\drivers\PTSimBus.sys [2014-03-08 32128]
R3 rtsuvc;@oem38.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-07-19 8247640]
R3 SaiK0CC3;SaiK0CC3; C:\WINDOWS\system32\DRIVERS\SaiK0CC3.sys [2012-09-20 180584]
R3 SaiMini;SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [2013-04-30 25120]
R3 SaiNtBus;SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [2013-04-30 52640]
R3 SaiU0CC3;SaiU0CC3; C:\WINDOWS\System32\drivers\SaiU0CC3.sys [2012-09-20 47208]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2013-06-03 33008]
R3 SynTP;@oem6.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2013-06-03 530672]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 btmaux;@oem70.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\WINDOWS\system32\DRIVERS\btmaux.sys [2013-07-22 140600]
S3 MotioninJoyXFilter;@oem71.inf,%MotioninJoyXFilter.ServiceName%;MotioninJoy Virtual Xinput device Filter Driver; C:\WINDOWS\System32\drivers\MijXfilt.sys [2012-05-12 121416]
S3 PTSimHid;@oem74.inf,%PTSimHid.SVCDESC%;PenTablet Simulated HID MiniDriver; C:\WINDOWS\System32\drivers\PTSimHid.sys [2014-03-08 22912]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 Tablet2k;Serial Tablet Port Driver; C:\WINDOWS\System32\Drivers\Tablet2k.sys []
S3 TClass2k;@oem73.inf,%TClass2k.SvcDesc%;Tablet Class Driver; C:\WINDOWS\system32\DRIVERS\TClass2k.sys [2014-03-08 32128]
S3 UCTblHid;@oem73.inf,%UCTblHid.SvcDesc%;HID Tablet Port Driver; C:\WINDOWS\system32\DRIVERS\UCTblHid.sys [2014-03-08 27520]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-21 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-08-26 1157496]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2011-10-19 423424]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-08-29 626416]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-18 157128]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-05-30 1631008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-05-30 21055432]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-06-13 933208]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2014-05-13 76888]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-08-29 149744]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-06-13 411936]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [2013-11-21 68368]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-04-30 15344]
S2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-05-16 131544]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-16 169432]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-16 366552]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2014-05-03 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2014-05-03 79360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-26 119408]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-08-29 273136]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-05-29 543424]
S3 Survarium Update Service;Survarium Update Service; C:\Program Files (x86)\Survarium\game\binaries\x86\survarium_service.exe [2014-06-15 77432]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: winlog.exe nelze spustit chybí *.dll
Dvouklikem na soubor C:\Program Files\trend micro\Tomáš.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: winlog.exe nelze spustit chybí *.dll
Děkuji mnohokrát za rychlou pomoc, pokud je to vše co se dá udělat. A fórum samozřejmě podpořím. 
-
Rudy
- Site Admin
- Příspěvky: 119541
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: winlog.exe nelze spustit chybí *.dll
Ano, je to vše. Za podporu děkujeme a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?