Zdravím, naše pc zpomalené, veškeré programy dlouho nabíhají, dle tak manageru využití pamětí 93 - 95% (3,8 z 4,0 GB), procesor cca 2%, HDD osciluje od 0 po 100%, i když víceméně žádný program neběží.
Prosím o kontrolu RSIT logu.
info.txt logfile of random's system information tool 1.10 2014-11-03 19:57:12
======MBR======
0x33C08ED0BC007C8EC08ED8BE007CBF0006B90002FCF3A450681C06CBFBB90400BDBE07807E00007C0B0F850E0183C510E2F1CD1888560055C6461105C6461000B441BBAA55CD135D720F81FB55AA7509F7C101007403FE46106660807E1000742666680000000066FF760868000068007C680100681000B4428A56008BF4CD139F83C4109EEB14B80102BB007C8A56008A76018A4E028A6E03CD136661731CFE4E11750C807E00800F848A00B280EB845532E48A5600CD135DEB9E813EFE7D55AA756EFF7600E88D007517FAB0D1E664E88300B0DFE660E87C00B0FFE664E87500FBB800BBCD1A6623C0753B6681FB54435041753281F90201722C666807BB00006668000200006668080000006653665366556668000000006668007C0000666168000007CD1A5A32F6EA007C0000CD18A0B707EB08A0B607EB03A0B50732E40500078BF0AC3C007409BB0700B40ECD10EBF2F4EBFD2BC9E464EB002402E0F82402C3496E76616C696420706172746974696F6E207461626C65004572726F72206C6F6164696E67206F7065726174696E672073797374656D004D697373696E67206F7065726174696E672073797374656D000000637B9A01C04A7600008001010007FEFFFF3F000000A248AA2B00FEFFFF05FEFFFFE148AA2B0F1EAA2B000000000000000000000000000000000000000000000000000000000000000055AA
======Uninstall list======
-->MsiExec /X{B455E95A-B804-439F-B533-336B1635AE97}
Adobe Flash Player 15 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_152_Plugin.exe -maintain plugin
Adobe Reader XI (11.0.09) - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AB0000000001}
Advertising Center-->MsiExec.exe /X{b2ec4a38-b545-4a00-8214-13fe0e915e6d}
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {0A1FAC46-B899-421D-B1A2-470896DC45DB}
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {E68DD413-B834-4923-8181-0A03B7555187}
Battlefield: Bad Company™ 2-->"C:\Program Files (x86)\Common Files\EAInstaller\Battlefield - Bad Company 2\Cleanup.exe" uninstall_game -autologging
BS.Player FREE-->"C:\Program Files (x86)\Webteh\BSPlayer\uninstall.exe"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
DAEMON Tools Lite-->C:\Program Files (x86)\DAEMON Tools Lite\uninst.exe
ESET Smart Security-->MsiExec.exe /I{B1920A83-25A3-4DBB-B1F5-2395BD05370E}
IrfanView (remove only)-->C:\Program Files (x86)\IrfanView\iv_uninstall.exe
Java 7 Update 67-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217055FF}
Microsoft ASP.NET MVC 4 Runtime-->MsiExec.exe /X{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0015-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0019-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {664655D8-B9BB-455D-8A58-7EAF7B0B2862}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-002A-0405-1000-0000000FF1CE} /uninstall {A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0044-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00A1-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00BA-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2007-->MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0405-0000-0000000FF1CE} /uninstall {0B7A4B67-2A38-42B1-9857-662FAB361E08}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-041B-0000-0000000FF1CE} /uninstall {FDF9A959-241A-4662-A8DE-7DED9C22D160}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (Czech) 2007-->MsiExec.exe /X{90120000-002A-0405-1000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610-->"C:\ProgramData\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610-->"C:\ProgramData\Package Cache\{95716cce-fc71-413f-8ad5-56c2892d4b3a}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610-->MsiExec.exe /X{764384C5-BCA9-307C-9AAC-FD443662686A}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610-->MsiExec.exe /X{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610-->MsiExec.exe /X{3D6AD258-61EA-35F5-812C-B7A02152996E}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610-->MsiExec.exe /X{E7D4E834-93EB-351F-B8FB-82CDAE623003}
Mozilla Firefox 33.0.2 (x86 cs)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
Nero 9 Essentials-->C:\Program Files (x86)\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="XM02-508X-MHAT-19WU-9Z3Z-0CH0-3U6E-85W5-MMHH-6647-1Z5L-7M8C-0U45-758P-0000"
Nero ControlCenter-->MsiExec.exe /X{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}
Nero Installer-->MsiExec.exe /X{e8a80433-302b-4ff1-815d-fcc8eac482ff}
Nero Online Upgrade-->MsiExec.exe /X{dba84796-8503-4ff0-af57-1747dd9a166d}
Nero StartSmart OEM-->MsiExec.exe /X{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}
Nero StartSmart-->MsiExec.exe /X{7748ac8c-18e3-43bb-959b-088faea16fb2}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NVIDIA GeForce Experience 2.1.2-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Ovladač 3D Vision 344.48-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA Ovladač HD audia 1.3.32.1-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA Ovladač řídící jednotky 3D Vision 344.46-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA Ovladače grafiky 344.48-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA PhysX-->MsiExec.exe /I{B455E95A-B804-439F-B533-336B1635AE97}
NVIDIA Stereoscopic 3D Driver-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
NVIDIA Systémový software PhysX 9.14.0702-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
OnLine TV INTERNEXT 2000-->C:\Program Files (x86)\OnLine TV INTERNEXT 2000\Uninst0.exe
Origin-->C:\Program Files (x86)\Origin\OriginUninstall.exe
Picasa 3-->"C:\Program Files (x86)\Google\Picasa3\Uninstall.exe"
PunkBuster Services-->C:\Windows\system32\pbsvc.exe -u
Readiris Pro 10-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{14D08502-FEE4-40E5-90D3-8A967A1D8BA2}\setup.exe" -l0x9
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {D33B9EF5-3801-496A-A2D6-B7F4BE972D75}
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B145DBBB-7778-4A5D-9D2B-DA6569F02391}
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E34960DB-2A93-45DB-A208-02650F7AB09C}
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B7727B4D-5EA3-4C11-9D30-15E47616DCAF}
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {293FB6BE-D3EB-4162-B522-F9108040B9FE}
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {2B3C041A-A7F2-4A24-968D-4BEB6A123D15}
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {EA575F57-C5D1-4B5A-B9F9-F16EEBC6B58C}
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {3579CE34-B225-4B19-A3AF-DE5F562A212F}
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {79850906-6D2B-4061-8EAF-EAC84173DEC5}
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition -->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {A4A50F66-DD0F-4150-A19F-0F35531D6E21}
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8907F32C-DF89-4C2F-AEDE-0DB4B65451C0}
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {319FC809-3841-4739-A25F-FDBADF073697}
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {32DA925D-8B7D-4298-B893-6291D28CE809}
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4CCE0378-386F-4DC2-9CC1-A3710C77057D}
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6B4A3804-666A-4DD8-84A7-B97701416784}
Security Update for Microsoft Office 2007 suites (KB2878233) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F7DFD2B8-0CD1-4A51-AC71-A0582FE796C2}
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {36842896-D83B-4C92-8261-6312B7DEB562}
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4C1BE82B-9AC0-4AB9-B76D-5467131955E1}
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {FC572B0C-6356-46CC-A01E-CCCEC4340BF5}
Security Update for Microsoft Office 2007 suites (KB2883031) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {D7B70F51-6A18-448B-9342-074F15BC42E4}
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {686630EC-8033-4031-85C5-D8E5CD62A958}
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8F311D6C-D8DD-4C32-9457-1A129CABD1A5}
Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C069DBBB-0547-4405-B9C8-38123FCD9CE0}
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {AEA16A27-0B97-4670-818F-A98D06EC0A6F}
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F88656FB-92A1-484E-911E-D259B15CF420}
Security Update for Microsoft Office Word 2007 (KB2883032) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {1C83EC92-7D38-4BDA-ADDC-5429030FDB0C}
Skype™ 6.20-->MsiExec.exe /X{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
SmarThru 4-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{90F1943D-EA4A-4460-B59F-30023F3BA69A}\setup.exe" -l0x9 uninstall -l0009
Sony Mobile Update Engine-->C:\Program Files (x86)\Sony Mobile\Update Engine\uninst.exe
Sony PC Companion 2.10.211-->"C:\Program Files (x86)\InstallShield Installation Information\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}\setup.exe" -runfromtemp -l0x0409 -removeonly
Stardock Start8-->"C:\Program Files (x86)\Stardock\Start8\uninstall.exe" "/U:C:\Program Files (x86)\Stardock\Start8\Uninstall\uninstall.xml"
TuneUp Utilities 2013-->C:\Program Files (x86)\TuneUp Utilities 2013\TUInstallHelper.exe --Trigger-Uninstall
Údržba Samsung SCX-4600 Series-->"C:\Program Files (x86)\Samsung\Samsung SCX-4600 Series\Setup\Setup.exe" /R
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A024FC7B-77DE-45DE-A058-1C049A17BFB3}
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition-->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {CB68A5B0-3508-4193-AEB9-AF636DAECE0F}
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {CB68A5B0-3508-4193-AEB9-AF636DAECE0F}
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition-->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {A030537D-0034-46AD-A730-B1119786F607}
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {53DEC068-4690-4F6B-9946-7D21EF02236B}
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2899475) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {23AE87D8-AB2F-4539-935C-442BC976F469}
VLC media player-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
WinRAR archiver-->C:\Program Files (x86)\WinRAR\uninstall.exe
Zoner Photo Studio 16-->"C:\Program Files\Zoner\Photo Studio 16\unins000.exe"
======System event log======
Computer Name: windows-mrt14b2
Event Code: 13
Message: Operační systém se vypíná v systémovém čase 2013-08-22T14:49:51.305986100Z.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20130822144951.305986-000
Event Type: Informace
User:
Computer Name: windows-mrt14b2
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 4
Source Name: EventLog
Time Written: 20140410135335.000000-000
Event Type: Informace
User:
Computer Name: windows-mrt14b2
Event Code: 6009
Message: Microsoft (R) Windows (R) 6.03. 9600 Multiprocessor Free.
Record Number: 3
Source Name: EventLog
Time Written: 20140410135335.000000-000
Event Type: Informace
User:
Computer Name: windows-mrt14b2
Event Code: 6011
Message: Název tohoto počítače v systémech DNS a NetBIOS byl změněn z WINDOWS-MRT14B2 na WIN-IA2UHP7T61D.
Record Number: 2
Source Name: EventLog
Time Written: 20140410135335.000000-000
Event Type: Informace
User:
Computer Name: windows-mrt14b2
Event Code: 109
Message: Správce napájení jádra inicioval přechod do režimu vypnutí.
Record Number: 1
Source Name: Microsoft-Windows-Kernel-Power
Time Written: 20130822144950.790358-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: windows-mrt14b2
Event Code: 5617
Message: Subsystémy služby WMI (Windows Management Instrumentation) byly úspěšně inicializovány.
Record Number: 5
Source Name: Microsoft-Windows-WMI
Time Written: 20140410135400.625833-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: windows-mrt14b2
Event Code: 9002
Message: Nepodařilo se spustit Správce oken plochy.
Record Number: 4
Source Name: Desktop Window Manager
Time Written: 20140410135348.000000-000
Event Type: Informace
User:
Computer Name: windows-mrt14b2
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20140410135340.074089-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: windows-mrt14b2
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20140410135336.355333-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-IA2UHP7T61D
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20140410135336.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: home_comp
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.
Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5
Další informace:
Pracovní stanice volajícího: HOME_COMP
Název cílového účtu: Administrator
Doména cílového účtu: home_comp
Record Number: 54464
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140725065254.875908-000
Event Type: Úspěšný audit
User:
Computer Name: home_comp
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.
Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5
Další informace:
Pracovní stanice volajícího: HOME_COMP
Název cílového účtu: muller11
Doména cílového účtu: home_comp
Record Number: 54463
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140725065254.860278-000
Event Type: Úspěšný audit
User:
Computer Name: home_comp
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.
Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5
Další informace:
Pracovní stanice volajícího: HOME_COMP
Název cílového účtu: HomeGroupUser$
Doména cílového účtu: home_comp
Record Number: 54462
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140725065254.860278-000
Event Type: Úspěšný audit
User:
Computer Name: home_comp
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.
Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5
Další informace:
Pracovní stanice volajícího: HOME_COMP
Název cílového účtu: Administrator
Doména cílového účtu: home_comp
Record Number: 54461
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140725065254.860278-000
Event Type: Úspěšný audit
User:
Computer Name: home_comp
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.
Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5
Další informace:
Pracovní stanice volajícího: HOME_COMP
Název cílového účtu: muller11
Doména cílového účtu: home_comp
Record Number: 54460
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140725065254.860278-000
Event Type: Úspěšný audit
User:
======Environment variables======
"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 23 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=1707
"ESET_OPTIONS"=
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalené pc, využtí paměti 95%
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119356
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalené pc, využtí paměti 95%
Zdravím!
Poprosím o obsah souboru log.txt. Toto je info.txt a podle něj nelze nic zjistit.
Poprosím o obsah souboru log.txt. Toto je info.txt a podle něj nelze nic zjistit.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalené pc, využtí paměti 95%
Omlouvám se,
Logfile of random's system information tool 1.10 (written by random/random)
Run by muller11 at 2014-11-03 19:56:46
Microsoft Windows 8.1
System drive C: has 223 GB (62%) free of 358 GB
Total RAM: 4094 MB (5% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:57:05, on 3. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\muller11.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Stardock Start8 (Start8) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8248 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-fdd8c908-7f3c-42a7-8fae-4f32c495a85b -SystemEventPortName:HostProcess-1df8aeaa-1073-4628-ac03-3384d898c939 -IoCancelEventPortName:HostProcess-4ad2352f-4fe8-4bd7-965d-09c51e93c190 -NonStateChangingEventPortName:HostProcess-61823c36-2ccc-4d37-8467-321661fbe5d6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d003ea52-8f11-4197-ab6a-45a6dc1b0616 -DeviceGroupId:WpdFsGroup
dashost.exe {901d4c6b-3fcb-4404-a6017b8e08b0ce9f}
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
C:\Windows\System32\WinLogon.exe -SpecialSession
"LogonUI.exe" /flags:0x0
-hiberboot
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
C:\Windows\System32\WinLogon.exe -SpecialSession
"LogonUI.exe" /flags:0x0
-hiberboot
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
"C:\Windows\system32\nvvsvc.exe"
winlogon.exe
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:1900
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Windows\System32\Taskmgr.exe" /3
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe525_ Global\UsGthrCtrlFltPipeMssGthrPipe525 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Users\muller11\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\tgv7dsmz.default-1414938995270
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2461504]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2014-05-23 466656]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]
C:\Users\muller11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlite.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-03 19:56:48 ----D---- C:\Program Files\trend micro
2014-11-03 19:56:46 ----D---- C:\rsit
2014-10-22 19:32:21 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-22 19:30:33 ----D---- C:\Windows\LastGood
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglv64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvmcumd.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvinitx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvIFR64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvFBC64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispgenco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-10-22 19:28:37 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-10-22 19:28:37 ----A---- C:\Windows\system32\nvcompiler.dll
2014-10-17 12:49:21 ----D---- C:\Users\muller11\AppData\Roaming\Kerio
2014-10-17 12:48:01 ----D---- C:\Program Files (x86)\My Company Name
2014-10-16 18:31:46 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2014-10-15 20:32:11 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 20:31:38 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-10-15 20:31:38 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-10-15 20:31:35 ----A---- C:\Windows\system32\winbici.dll
2014-10-15 20:31:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuapi.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups2.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wucltux.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuauclt.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuapp.exe
2014-10-15 20:30:36 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 20:30:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-10-15 20:30:24 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 20:30:22 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 20:30:21 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-10-15 20:30:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-10-15 20:30:20 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 20:30:06 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\packager.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-10-15 20:30:05 ----A---- C:\Windows\system32\msi.dll
2014-10-15 17:34:06 ----D---- C:\Users\muller11\AppData\Roaming\GHISLER
2014-10-12 15:23:51 ----D---- C:\ProgramData\Orbit
2014-10-06 12:38:49 ----D---- C:\Users\muller11\AppData\Roaming\Oracle
2014-10-06 12:38:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-05 20:05:02 ----A---- C:\Windows\system32\drivers\kvnet.sys
======List of files/folders modified in the last 1 month======
2014-11-03 19:56:48 ----RD---- C:\Program Files
2014-11-03 19:53:46 ----D---- C:\Windows\Temp
2014-11-03 19:13:49 ----D---- C:\Users\muller11\AppData\Roaming\vlc
2014-11-03 19:00:20 ----D---- C:\Windows\system32\sru
2014-11-03 07:51:32 ----D---- C:\Windows\debug
2014-11-03 07:51:24 ----D---- C:\Windows\Prefetch
2014-11-03 07:35:45 ----D---- C:\Windows\SysWOW64
2014-11-03 07:35:41 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-11-02 20:28:12 ----HD---- C:\ProgramData
2014-11-02 20:15:00 ----D---- C:\Windows\SoftwareDistribution
2014-11-02 20:12:37 ----D---- C:\Windows\Inf
2014-11-02 15:56:02 ----SHD---- C:\System Volume Information
2014-11-02 15:53:03 ----D---- C:\Windows\Microsoft.NET
2014-11-01 08:26:13 ----D---- C:\Windows\AppReadiness
2014-10-31 18:35:37 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-31 18:35:37 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-28 09:47:31 ----HD---- C:\Program Files\WindowsApps
2014-10-25 16:11:55 ----D---- C:\Windows\system32\config
2014-10-25 15:10:51 ----D---- C:\Users\muller11\AppData\Roaming\DAEMON Tools Lite
2014-10-25 15:10:28 ----D---- C:\Windows
2014-10-25 15:09:41 ----SHD---- C:\Windows\Installer
2014-10-25 15:09:39 ----RD---- C:\Program Files (x86)
2014-10-24 09:16:39 ----D---- C:\Windows\system32\MRT
2014-10-24 09:13:30 ----A---- C:\Windows\system32\MRT.exe
2014-10-22 19:32:38 ----D---- C:\ProgramData\NVIDIA
2014-10-22 19:32:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-22 19:32:19 ----D---- C:\Windows\system32\DriverStore
2014-10-22 19:31:00 ----RD---- C:\Windows\System32
2014-10-22 19:30:35 ----D---- C:\Windows\system32\drivers
2014-10-19 17:04:25 ----D---- C:\Users\muller11\AppData\Roaming\Skype
2014-10-19 11:41:13 ----D---- C:\Windows\rescache
2014-10-18 17:15:26 ----D---- C:\Windows\WinSxS
2014-10-18 17:15:08 ----RSD---- C:\Windows\assembly
2014-10-17 06:26:53 ----D---- C:\Windows\MediaViewer
2014-10-17 06:26:53 ----D---- C:\Windows\FileManager
2014-10-17 06:26:53 ----D---- C:\Windows\Camera
2014-10-17 06:26:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-10-17 06:26:52 ----D---- C:\Program Files\Internet Explorer
2014-10-17 06:26:52 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-17 06:26:51 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 18:36:18 ----D---- C:\ProgramData\Microsoft Help
2014-10-16 18:36:05 ----D---- C:\Windows\CbsTemp
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvapi64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvsvc64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvcpl.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvvsvc.exe
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvsvcr.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvshext.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvmctray.dll
2014-10-15 20:28:56 ----D---- C:\Windows\system32\catroot2
2014-10-15 17:10:28 ----D---- C:\Windows\Logs
2014-10-15 17:09:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-06 12:38:12 ----D---- C:\ProgramData\Oracle
2014-10-06 12:38:03 ----D---- C:\Program Files (x86)\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-04-10 386680]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;@oem10.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-02-16 53816]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-02-16 11576]
R3 LVRS64;@oem4.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;@oem5.inf,%PID_09A4_DD%(UVC);Logitech QuickCam E3500(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2008-07-26 5068056]
R3 NVHDA;@oem88.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-09-17 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-10-16 13190288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 20288]
R3 nvvad_WaveExtensible;@oem90.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2014-01-06 11880]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 dtscsidrv;dtscsidrv; C:\Windows\system32\drivers\dtscsidrv.sys [2014-04-11 309248]
S3 ggflt;@oem66.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\Windows\System32\drivers\ggflt.sys [2014-07-14 16088]
S3 ggsomc;@oem66.inf,%SvcDesc%;SOMC USB Flash Driver; C:\Windows\System32\drivers\ggsomc.sys [2014-07-14 30424]
S3 IT9135BDA;@oem15.inf,%IT9135Devcie.FriendlyName%;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2010-02-03 113280]
S3 kvnet;@oem1.inf,%kvnet.Service.DispName%;Kerio Virtual Network Adapter; C:\Windows\system32\DRIVERS\kvnet.sys [2014-10-05 30208]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-16 933064]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-05 76888]
R2 Start8;Stardock Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [2014-03-28 143288]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2014-01-28 2412344]
S2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1149760]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1796928]
S2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19440960]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410952]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09 267440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-31 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-31 114288]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by muller11 at 2014-11-03 19:56:46
Microsoft Windows 8.1
System drive C: has 223 GB (62%) free of 358 GB
Total RAM: 4094 MB (5% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:57:05, on 3. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\muller11.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Stardock Start8 (Start8) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8248 bytes
======Listing Processes======
wininit.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-fdd8c908-7f3c-42a7-8fae-4f32c495a85b -SystemEventPortName:HostProcess-1df8aeaa-1073-4628-ac03-3384d898c939 -IoCancelEventPortName:HostProcess-4ad2352f-4fe8-4bd7-965d-09c51e93c190 -NonStateChangingEventPortName:HostProcess-61823c36-2ccc-4d37-8467-321661fbe5d6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d003ea52-8f11-4197-ab6a-45a6dc1b0616 -DeviceGroupId:WpdFsGroup
dashost.exe {901d4c6b-3fcb-4404-a6017b8e08b0ce9f}
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
C:\Windows\System32\WinLogon.exe -SpecialSession
"LogonUI.exe" /flags:0x0
-hiberboot
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
C:\Windows\System32\WinLogon.exe -SpecialSession
"LogonUI.exe" /flags:0x0
-hiberboot
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
"C:\Windows\system32\nvvsvc.exe"
winlogon.exe
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:1900
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\skydrive.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Windows\System32\Taskmgr.exe" /3
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe525_ Global\UsGthrCtrlFltPipeMssGthrPipe525 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Users\muller11\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\tgv7dsmz.default-1414938995270
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2461504]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2014-05-23 466656]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]
C:\Users\muller11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlite.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-03 19:56:48 ----D---- C:\Program Files\trend micro
2014-11-03 19:56:46 ----D---- C:\rsit
2014-10-22 19:32:21 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-22 19:30:33 ----D---- C:\Windows\LastGood
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglv64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvmcumd.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvinitx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvIFR64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvFBC64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispgenco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-10-22 19:28:37 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-10-22 19:28:37 ----A---- C:\Windows\system32\nvcompiler.dll
2014-10-17 12:49:21 ----D---- C:\Users\muller11\AppData\Roaming\Kerio
2014-10-17 12:48:01 ----D---- C:\Program Files (x86)\My Company Name
2014-10-16 18:31:46 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2014-10-15 20:32:11 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 20:31:38 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-10-15 20:31:38 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-10-15 20:31:35 ----A---- C:\Windows\system32\winbici.dll
2014-10-15 20:31:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuapi.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups2.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wucltux.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuauclt.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuapp.exe
2014-10-15 20:30:36 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 20:30:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-10-15 20:30:24 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 20:30:22 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 20:30:21 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-10-15 20:30:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-10-15 20:30:20 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 20:30:06 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\packager.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-10-15 20:30:05 ----A---- C:\Windows\system32\msi.dll
2014-10-15 17:34:06 ----D---- C:\Users\muller11\AppData\Roaming\GHISLER
2014-10-12 15:23:51 ----D---- C:\ProgramData\Orbit
2014-10-06 12:38:49 ----D---- C:\Users\muller11\AppData\Roaming\Oracle
2014-10-06 12:38:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-05 20:05:02 ----A---- C:\Windows\system32\drivers\kvnet.sys
======List of files/folders modified in the last 1 month======
2014-11-03 19:56:48 ----RD---- C:\Program Files
2014-11-03 19:53:46 ----D---- C:\Windows\Temp
2014-11-03 19:13:49 ----D---- C:\Users\muller11\AppData\Roaming\vlc
2014-11-03 19:00:20 ----D---- C:\Windows\system32\sru
2014-11-03 07:51:32 ----D---- C:\Windows\debug
2014-11-03 07:51:24 ----D---- C:\Windows\Prefetch
2014-11-03 07:35:45 ----D---- C:\Windows\SysWOW64
2014-11-03 07:35:41 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-11-02 20:28:12 ----HD---- C:\ProgramData
2014-11-02 20:15:00 ----D---- C:\Windows\SoftwareDistribution
2014-11-02 20:12:37 ----D---- C:\Windows\Inf
2014-11-02 15:56:02 ----SHD---- C:\System Volume Information
2014-11-02 15:53:03 ----D---- C:\Windows\Microsoft.NET
2014-11-01 08:26:13 ----D---- C:\Windows\AppReadiness
2014-10-31 18:35:37 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-31 18:35:37 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-28 09:47:31 ----HD---- C:\Program Files\WindowsApps
2014-10-25 16:11:55 ----D---- C:\Windows\system32\config
2014-10-25 15:10:51 ----D---- C:\Users\muller11\AppData\Roaming\DAEMON Tools Lite
2014-10-25 15:10:28 ----D---- C:\Windows
2014-10-25 15:09:41 ----SHD---- C:\Windows\Installer
2014-10-25 15:09:39 ----RD---- C:\Program Files (x86)
2014-10-24 09:16:39 ----D---- C:\Windows\system32\MRT
2014-10-24 09:13:30 ----A---- C:\Windows\system32\MRT.exe
2014-10-22 19:32:38 ----D---- C:\ProgramData\NVIDIA
2014-10-22 19:32:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-22 19:32:19 ----D---- C:\Windows\system32\DriverStore
2014-10-22 19:31:00 ----RD---- C:\Windows\System32
2014-10-22 19:30:35 ----D---- C:\Windows\system32\drivers
2014-10-19 17:04:25 ----D---- C:\Users\muller11\AppData\Roaming\Skype
2014-10-19 11:41:13 ----D---- C:\Windows\rescache
2014-10-18 17:15:26 ----D---- C:\Windows\WinSxS
2014-10-18 17:15:08 ----RSD---- C:\Windows\assembly
2014-10-17 06:26:53 ----D---- C:\Windows\MediaViewer
2014-10-17 06:26:53 ----D---- C:\Windows\FileManager
2014-10-17 06:26:53 ----D---- C:\Windows\Camera
2014-10-17 06:26:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-10-17 06:26:52 ----D---- C:\Program Files\Internet Explorer
2014-10-17 06:26:52 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-17 06:26:51 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 18:36:18 ----D---- C:\ProgramData\Microsoft Help
2014-10-16 18:36:05 ----D---- C:\Windows\CbsTemp
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvapi64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvsvc64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvcpl.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvvsvc.exe
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvsvcr.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvshext.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvmctray.dll
2014-10-15 20:28:56 ----D---- C:\Windows\system32\catroot2
2014-10-15 17:10:28 ----D---- C:\Windows\Logs
2014-10-15 17:09:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-06 12:38:12 ----D---- C:\ProgramData\Oracle
2014-10-06 12:38:03 ----D---- C:\Program Files (x86)\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-04-10 386680]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;@oem10.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-02-16 53816]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-02-16 11576]
R3 LVRS64;@oem4.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;@oem5.inf,%PID_09A4_DD%(UVC);Logitech QuickCam E3500(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2008-07-26 5068056]
R3 NVHDA;@oem88.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-09-17 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-10-16 13190288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 20288]
R3 nvvad_WaveExtensible;@oem90.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2014-01-06 11880]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 dtscsidrv;dtscsidrv; C:\Windows\system32\drivers\dtscsidrv.sys [2014-04-11 309248]
S3 ggflt;@oem66.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\Windows\System32\drivers\ggflt.sys [2014-07-14 16088]
S3 ggsomc;@oem66.inf,%SvcDesc%;SOMC USB Flash Driver; C:\Windows\System32\drivers\ggsomc.sys [2014-07-14 30424]
S3 IT9135BDA;@oem15.inf,%IT9135Devcie.FriendlyName%;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2010-02-03 113280]
S3 kvnet;@oem1.inf,%kvnet.Service.DispName%;Kerio Virtual Network Adapter; C:\Windows\system32\DRIVERS\kvnet.sys [2014-10-05 30208]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-16 933064]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-05 76888]
R2 Start8;Stardock Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [2014-03-28 143288]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2014-01-28 2412344]
S2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1149760]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1796928]
S2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19440960]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410952]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09 267440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-31 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-31 114288]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119356
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalené pc, využtí paměti 95%
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalené pc, využtí paměti 95%
Využití paměti kleslo na 25 - 30%
# AdwCleaner v3.311 - Report created 03/11/2014 at 20:41:50
# Updated 30/09/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : muller11 - HOME_COMP
# Running from : C:\Users\muller11\Desktop\adwcleaner_3.311.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\muller11\AppData\Roaming\OpenCandy
File Deleted : C:\END
File Deleted : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default\searchplugins\ask-search.xml
File Deleted : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default\user.js
File Deleted : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\tgv7dsmz.default-1414938995270\user.js
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\SOFTWARE\Conduit
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Mozilla Firefox v33.0.2 (x86 cs)
[ File : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default\prefs.js ]
[ File : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\tgv7dsmz.default-1414938995270\prefs.js ]
*************************
AdwCleaner[R0].txt - [1537 octets] - [03/11/2014 20:40:11]
AdwCleaner[S0].txt - [1435 octets] - [03/11/2014 20:41:50]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1495 octets] ##########
# AdwCleaner v3.311 - Report created 03/11/2014 at 20:41:50
# Updated 30/09/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : muller11 - HOME_COMP
# Running from : C:\Users\muller11\Desktop\adwcleaner_3.311.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\muller11\AppData\Roaming\OpenCandy
File Deleted : C:\END
File Deleted : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default\searchplugins\ask-search.xml
File Deleted : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default\user.js
File Deleted : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\tgv7dsmz.default-1414938995270\user.js
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\SOFTWARE\Conduit
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Mozilla Firefox v33.0.2 (x86 cs)
[ File : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default\prefs.js ]
[ File : C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\tgv7dsmz.default-1414938995270\prefs.js ]
*************************
AdwCleaner[R0].txt - [1537 octets] - [03/11/2014 20:40:11]
AdwCleaner[S0].txt - [1435 octets] - [03/11/2014 20:41:50]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1495 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119356
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalené pc, využtí paměti 95%
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalené pc, využtí paměti 95%
Logfile of random's system information tool 1.10 (written by random/random)
Run by muller11 at 2014-11-03 20:59:45
Microsoft Windows 8.1
System drive C: has 224 GB (63%) free of 358 GB
Total RAM: 4094 MB (70% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:59:47, on 3. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\muller11.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Stardock Start8 (Start8) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8248 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 4bdb4c18-b7f5-41fb-9945-f176000b4004 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:2508
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\skydrive.exe -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-33b03006-2cee-45a2-abd2-29e95de6fae1 -SystemEventPortName:HostProcess-98024ef2-c8e9-4c0d-ba95-010f580f0c27 -IoCancelEventPortName:HostProcess-3f05f9c8-bc0c-4c09-949c-69b886a93d48 -NonStateChangingEventPortName:HostProcess-dd890466-b654-4758-bce7-19f638e71495 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:69136a93-fabb-4cf9-976a-76ff6d3840ad -DeviceGroupId:WpdFsGroup
dashost.exe {8755ec8e-8657-4ca1-af9418c14202adad}
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\Taskmgr.exe" /3
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\muller11\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3, DeviceDetection@logitech.com:1.20.0.66, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {14295291-5386-4037-b05b-1b533cf5ae21}:0.1323, {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.03, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {D46E8522-6E86-44b1-A622-58C0668AD78E}:3.6.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default\extensions\
DeviceDetection@logitech.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2461504]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2014-05-23 466656]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]
C:\Users\muller11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlite.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-03 20:40:07 ----D---- C:\AdwCleaner
2014-11-03 19:56:48 ----D---- C:\Program Files\trend micro
2014-11-03 19:56:46 ----D---- C:\rsit
2014-10-22 19:32:21 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-22 19:30:33 ----D---- C:\Windows\LastGood.Tmp
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglv64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvmcumd.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvinitx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvIFR64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvFBC64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispgenco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-10-22 19:28:37 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-10-22 19:28:37 ----A---- C:\Windows\system32\nvcompiler.dll
2014-10-17 12:49:21 ----D---- C:\Users\muller11\AppData\Roaming\Kerio
2014-10-17 12:48:01 ----D---- C:\Program Files (x86)\My Company Name
2014-10-16 18:31:46 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2014-10-15 20:32:11 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 20:31:38 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-10-15 20:31:38 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-10-15 20:31:35 ----A---- C:\Windows\system32\winbici.dll
2014-10-15 20:31:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuapi.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups2.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wucltux.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuauclt.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuapp.exe
2014-10-15 20:30:36 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 20:30:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-10-15 20:30:24 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 20:30:22 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 20:30:21 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-10-15 20:30:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-10-15 20:30:20 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 20:30:06 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\packager.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-10-15 20:30:05 ----A---- C:\Windows\system32\msi.dll
2014-10-15 17:34:06 ----D---- C:\Users\muller11\AppData\Roaming\GHISLER
2014-10-12 15:23:51 ----D---- C:\ProgramData\Orbit
2014-10-06 12:38:49 ----D---- C:\Users\muller11\AppData\Roaming\Oracle
2014-10-06 12:38:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-05 20:05:02 ----A---- C:\Windows\system32\drivers\kvnet.sys
======List of files/folders modified in the last 1 month======
2014-11-03 20:57:53 ----D---- C:\Windows\Temp
2014-11-03 20:50:56 ----RD---- C:\Windows\System32
2014-11-03 20:50:56 ----D---- C:\Windows\Inf
2014-11-03 20:50:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-03 20:48:44 ----D---- C:\Windows\Prefetch
2014-11-03 20:44:59 ----D---- C:\Windows\system32\sru
2014-11-03 20:44:13 ----D---- C:\ProgramData\NVIDIA
2014-11-03 20:44:02 ----D---- C:\Windows\SysWOW64
2014-11-03 20:44:02 ----D---- C:\Windows
2014-11-03 20:44:02 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-03 20:19:54 ----D---- C:\Windows\Microsoft.NET
2014-11-03 19:56:48 ----RD---- C:\Program Files
2014-11-03 19:13:49 ----D---- C:\Users\muller11\AppData\Roaming\vlc
2014-11-03 07:51:32 ----D---- C:\Windows\debug
2014-11-03 07:35:41 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-11-02 20:28:12 ----HD---- C:\ProgramData
2014-11-02 20:15:00 ----D---- C:\Windows\SoftwareDistribution
2014-11-02 15:56:02 ----SHD---- C:\System Volume Information
2014-11-01 08:26:13 ----D---- C:\Windows\AppReadiness
2014-10-31 18:35:37 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-28 09:47:31 ----HD---- C:\Program Files\WindowsApps
2014-10-25 16:11:55 ----D---- C:\Windows\system32\config
2014-10-25 15:10:51 ----D---- C:\Users\muller11\AppData\Roaming\DAEMON Tools Lite
2014-10-25 15:09:41 ----SHD---- C:\Windows\Installer
2014-10-25 15:09:39 ----RD---- C:\Program Files (x86)
2014-10-24 09:16:39 ----D---- C:\Windows\system32\MRT
2014-10-24 09:13:30 ----A---- C:\Windows\system32\MRT.exe
2014-10-22 19:32:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-22 19:32:19 ----D---- C:\Windows\system32\DriverStore
2014-10-22 19:30:35 ----D---- C:\Windows\system32\drivers
2014-10-19 17:04:25 ----D---- C:\Users\muller11\AppData\Roaming\Skype
2014-10-19 11:41:13 ----D---- C:\Windows\rescache
2014-10-18 17:15:26 ----D---- C:\Windows\WinSxS
2014-10-18 17:15:08 ----RSD---- C:\Windows\assembly
2014-10-17 06:26:53 ----D---- C:\Windows\MediaViewer
2014-10-17 06:26:53 ----D---- C:\Windows\FileManager
2014-10-17 06:26:53 ----D---- C:\Windows\Camera
2014-10-17 06:26:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-10-17 06:26:52 ----D---- C:\Program Files\Internet Explorer
2014-10-17 06:26:52 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-17 06:26:51 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 18:36:18 ----D---- C:\ProgramData\Microsoft Help
2014-10-16 18:36:05 ----D---- C:\Windows\CbsTemp
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvapi64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvsvc64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvcpl.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvvsvc.exe
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvsvcr.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvshext.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvmctray.dll
2014-10-15 20:28:56 ----D---- C:\Windows\system32\catroot2
2014-10-15 17:10:28 ----D---- C:\Windows\Logs
2014-10-15 17:09:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-06 12:38:12 ----D---- C:\ProgramData\Oracle
2014-10-06 12:38:03 ----D---- C:\Program Files (x86)\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-04-10 386680]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;@oem10.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-02-16 53816]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-02-16 11576]
R3 LVRS64;@oem4.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;@oem5.inf,%PID_09A4_DD%(UVC);Logitech QuickCam E3500(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2008-07-26 5068056]
R3 NVHDA;@oem88.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-09-17 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-10-16 13190288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 20288]
R3 nvvad_WaveExtensible;@oem90.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2014-01-06 11880]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 dtscsidrv;dtscsidrv; C:\Windows\system32\drivers\dtscsidrv.sys [2014-04-11 309248]
S3 ggflt;@oem66.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\Windows\System32\drivers\ggflt.sys [2014-07-14 16088]
S3 ggsomc;@oem66.inf,%SvcDesc%;SOMC USB Flash Driver; C:\Windows\System32\drivers\ggsomc.sys [2014-07-14 30424]
S3 IT9135BDA;@oem15.inf,%IT9135Devcie.FriendlyName%;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2010-02-03 113280]
S3 kvnet;@oem1.inf,%kvnet.Service.DispName%;Kerio Virtual Network Adapter; C:\Windows\system32\DRIVERS\kvnet.sys [2014-10-05 30208]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1149760]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1796928]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19440960]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-16 933064]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-05 76888]
R2 Start8;Stardock Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [2014-03-28 143288]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410952]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2014-01-28 2412344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09 267440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-31 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-31 114288]
-----------------EOF-----------------
Run by muller11 at 2014-11-03 20:59:45
Microsoft Windows 8.1
System drive C: has 224 GB (63%) free of 358 GB
Total RAM: 4094 MB (70% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:59:47, on 3. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\muller11.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Stardock Start8 (Start8) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8248 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 4bdb4c18-b7f5-41fb-9945-f176000b4004 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:2508
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\skydrive.exe -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-33b03006-2cee-45a2-abd2-29e95de6fae1 -SystemEventPortName:HostProcess-98024ef2-c8e9-4c0d-ba95-010f580f0c27 -IoCancelEventPortName:HostProcess-3f05f9c8-bc0c-4c09-949c-69b886a93d48 -NonStateChangingEventPortName:HostProcess-dd890466-b654-4758-bce7-19f638e71495 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:69136a93-fabb-4cf9-976a-76ff6d3840ad -DeviceGroupId:WpdFsGroup
dashost.exe {8755ec8e-8657-4ca1-af9418c14202adad}
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\Taskmgr.exe" /3
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\muller11\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3, DeviceDetection@logitech.com:1.20.0.66, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, jqs@sun.com:1.0, {20a82645-c095-46ed-80e3-08825760534b}:0.0.0, {14295291-5386-4037-b05b-1b533cf5ae21}:0.1323, {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.03, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {D46E8522-6E86-44b1-A622-58C0668AD78E}:3.6.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\6y3qp2tu.default\extensions\
DeviceDetection@logitech.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2461504]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2014-05-23 466656]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25 256896]
C:\Users\muller11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlite.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-03 20:40:07 ----D---- C:\AdwCleaner
2014-11-03 19:56:48 ----D---- C:\Program Files\trend micro
2014-11-03 19:56:46 ----D---- C:\rsit
2014-10-22 19:32:21 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-22 19:30:33 ----D---- C:\Windows\LastGood.Tmp
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglv64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvmcumd.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvinitx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvIFR64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvFBC64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispgenco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-10-22 19:28:37 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-10-22 19:28:37 ----A---- C:\Windows\system32\nvcompiler.dll
2014-10-17 12:49:21 ----D---- C:\Users\muller11\AppData\Roaming\Kerio
2014-10-17 12:48:01 ----D---- C:\Program Files (x86)\My Company Name
2014-10-16 18:31:46 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2014-10-15 20:32:11 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 20:31:38 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-10-15 20:31:38 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-10-15 20:31:35 ----A---- C:\Windows\system32\winbici.dll
2014-10-15 20:31:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuapi.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups2.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wucltux.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuauclt.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuapp.exe
2014-10-15 20:30:36 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 20:30:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-10-15 20:30:24 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 20:30:22 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 20:30:21 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-10-15 20:30:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-10-15 20:30:20 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 20:30:06 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\packager.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-10-15 20:30:05 ----A---- C:\Windows\system32\msi.dll
2014-10-15 17:34:06 ----D---- C:\Users\muller11\AppData\Roaming\GHISLER
2014-10-12 15:23:51 ----D---- C:\ProgramData\Orbit
2014-10-06 12:38:49 ----D---- C:\Users\muller11\AppData\Roaming\Oracle
2014-10-06 12:38:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-05 20:05:02 ----A---- C:\Windows\system32\drivers\kvnet.sys
======List of files/folders modified in the last 1 month======
2014-11-03 20:57:53 ----D---- C:\Windows\Temp
2014-11-03 20:50:56 ----RD---- C:\Windows\System32
2014-11-03 20:50:56 ----D---- C:\Windows\Inf
2014-11-03 20:50:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-03 20:48:44 ----D---- C:\Windows\Prefetch
2014-11-03 20:44:59 ----D---- C:\Windows\system32\sru
2014-11-03 20:44:13 ----D---- C:\ProgramData\NVIDIA
2014-11-03 20:44:02 ----D---- C:\Windows\SysWOW64
2014-11-03 20:44:02 ----D---- C:\Windows
2014-11-03 20:44:02 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-03 20:19:54 ----D---- C:\Windows\Microsoft.NET
2014-11-03 19:56:48 ----RD---- C:\Program Files
2014-11-03 19:13:49 ----D---- C:\Users\muller11\AppData\Roaming\vlc
2014-11-03 07:51:32 ----D---- C:\Windows\debug
2014-11-03 07:35:41 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-11-02 20:28:12 ----HD---- C:\ProgramData
2014-11-02 20:15:00 ----D---- C:\Windows\SoftwareDistribution
2014-11-02 15:56:02 ----SHD---- C:\System Volume Information
2014-11-01 08:26:13 ----D---- C:\Windows\AppReadiness
2014-10-31 18:35:37 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-28 09:47:31 ----HD---- C:\Program Files\WindowsApps
2014-10-25 16:11:55 ----D---- C:\Windows\system32\config
2014-10-25 15:10:51 ----D---- C:\Users\muller11\AppData\Roaming\DAEMON Tools Lite
2014-10-25 15:09:41 ----SHD---- C:\Windows\Installer
2014-10-25 15:09:39 ----RD---- C:\Program Files (x86)
2014-10-24 09:16:39 ----D---- C:\Windows\system32\MRT
2014-10-24 09:13:30 ----A---- C:\Windows\system32\MRT.exe
2014-10-22 19:32:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-22 19:32:19 ----D---- C:\Windows\system32\DriverStore
2014-10-22 19:30:35 ----D---- C:\Windows\system32\drivers
2014-10-19 17:04:25 ----D---- C:\Users\muller11\AppData\Roaming\Skype
2014-10-19 11:41:13 ----D---- C:\Windows\rescache
2014-10-18 17:15:26 ----D---- C:\Windows\WinSxS
2014-10-18 17:15:08 ----RSD---- C:\Windows\assembly
2014-10-17 06:26:53 ----D---- C:\Windows\MediaViewer
2014-10-17 06:26:53 ----D---- C:\Windows\FileManager
2014-10-17 06:26:53 ----D---- C:\Windows\Camera
2014-10-17 06:26:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-10-17 06:26:52 ----D---- C:\Program Files\Internet Explorer
2014-10-17 06:26:52 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-17 06:26:51 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 18:36:18 ----D---- C:\ProgramData\Microsoft Help
2014-10-16 18:36:05 ----D---- C:\Windows\CbsTemp
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvapi64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvsvc64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvcpl.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvvsvc.exe
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvsvcr.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvshext.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvmctray.dll
2014-10-15 20:28:56 ----D---- C:\Windows\system32\catroot2
2014-10-15 17:10:28 ----D---- C:\Windows\Logs
2014-10-15 17:09:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-06 12:38:12 ----D---- C:\ProgramData\Oracle
2014-10-06 12:38:03 ----D---- C:\Program Files (x86)\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-04-10 386680]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;@oem10.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-02-16 53816]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-02-16 11576]
R3 LVRS64;@oem4.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;@oem5.inf,%PID_09A4_DD%(UVC);Logitech QuickCam E3500(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2008-07-26 5068056]
R3 NVHDA;@oem88.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-09-17 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-10-16 13190288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 20288]
R3 nvvad_WaveExtensible;@oem90.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2014-01-06 11880]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 dtscsidrv;dtscsidrv; C:\Windows\system32\drivers\dtscsidrv.sys [2014-04-11 309248]
S3 ggflt;@oem66.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\Windows\System32\drivers\ggflt.sys [2014-07-14 16088]
S3 ggsomc;@oem66.inf,%SvcDesc%;SOMC USB Flash Driver; C:\Windows\System32\drivers\ggsomc.sys [2014-07-14 30424]
S3 IT9135BDA;@oem15.inf,%IT9135Devcie.FriendlyName%;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2010-02-03 113280]
S3 kvnet;@oem1.inf,%kvnet.Service.DispName%;Kerio Virtual Network Adapter; C:\Windows\system32\DRIVERS\kvnet.sys [2014-10-05 30208]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1149760]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1796928]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19440960]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-16 933064]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-05 76888]
R2 Start8;Stardock Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [2014-03-28 143288]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410952]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2014-01-28 2412344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09 267440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-31 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-31 114288]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119356
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalené pc, využtí paměti 95%
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalené pc, využtí paměti 95%
Logfile of random's system information tool 1.10 (written by random/random)
Run by muller11 at 2014-11-04 17:42:14
Microsoft Windows 8.1
System drive C: has 226 GB (63%) free of 358 GB
Total RAM: 4094 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:42:16, on 4. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\muller11.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Stardock Start8 (Start8) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8141 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 4bdb4c18-b7f5-41fb-9945-f176000b4004 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-87cc5a5c-74b0-4e59-bc0f-f657d2cbc708 -SystemEventPortName:HostProcess-9a202bb4-a298-4e26-842d-a6e837323c1c -IoCancelEventPortName:HostProcess-05f8743e-9bcb-44a9-a6cd-b82ded349941 -NonStateChangingEventPortName:HostProcess-4b5dab08-83c8-477e-93b8-a4c85ab37c17 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a46b63e8-ebc0-4125-92cf-e3a7e3464f97 -DeviceGroupId:WpdFsGroup
dashost.exe {4019a1ab-c647-4fea-90490a4c07409ea2}
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:1904
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\WinStore\WSHost.exe -Embedding
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\muller11\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\tgv7dsmz.default-1414938995270
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2461504]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2014-05-23 466656]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\Users\muller11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlite.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-04 17:35:54 ----D---- C:\_OTM
2014-11-03 20:40:07 ----D---- C:\AdwCleaner
2014-11-03 19:56:48 ----D---- C:\Program Files\trend micro
2014-11-03 19:56:46 ----D---- C:\rsit
2014-10-22 19:32:21 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglv64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvmcumd.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvinitx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvIFR64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvFBC64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispgenco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-10-22 19:28:37 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-10-22 19:28:37 ----A---- C:\Windows\system32\nvcompiler.dll
2014-10-17 12:49:21 ----D---- C:\Users\muller11\AppData\Roaming\Kerio
2014-10-17 12:48:01 ----D---- C:\Program Files (x86)\My Company Name
2014-10-16 18:31:46 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2014-10-15 20:32:11 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 20:31:38 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-10-15 20:31:38 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-10-15 20:31:35 ----A---- C:\Windows\system32\winbici.dll
2014-10-15 20:31:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuapi.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups2.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wucltux.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuauclt.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuapp.exe
2014-10-15 20:30:36 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 20:30:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-10-15 20:30:24 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 20:30:22 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 20:30:21 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-10-15 20:30:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-10-15 20:30:20 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 20:30:06 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\packager.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-10-15 20:30:05 ----A---- C:\Windows\system32\msi.dll
2014-10-15 17:34:06 ----D---- C:\Users\muller11\AppData\Roaming\GHISLER
2014-10-12 15:23:51 ----D---- C:\ProgramData\Orbit
2014-10-06 12:38:49 ----D---- C:\Users\muller11\AppData\Roaming\Oracle
2014-10-06 12:38:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-05 20:05:02 ----A---- C:\Windows\system32\drivers\kvnet.sys
======List of files/folders modified in the last 1 month======
2014-11-04 17:42:08 ----D---- C:\Windows\Prefetch
2014-11-04 17:41:19 ----D---- C:\Windows\Temp
2014-11-04 17:37:41 ----D---- C:\ProgramData\NVIDIA
2014-11-04 17:36:27 ----RD---- C:\Windows\System32
2014-11-04 17:36:27 ----D---- C:\Windows\SysWOW64
2014-11-04 17:36:27 ----D---- C:\Windows
2014-11-04 17:00:00 ----D---- C:\Windows\system32\sru
2014-11-04 16:41:55 ----SHD---- C:\System Volume Information
2014-11-04 16:37:04 ----D---- C:\Windows\Microsoft.NET
2014-11-04 15:40:13 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-11-04 15:40:11 ----D---- C:\Users\muller11\AppData\Roaming\vlc
2014-11-03 20:50:56 ----D---- C:\Windows\Inf
2014-11-03 20:50:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-03 20:44:02 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-03 19:56:48 ----RD---- C:\Program Files
2014-11-03 07:51:32 ----D---- C:\Windows\debug
2014-11-02 20:28:12 ----HD---- C:\ProgramData
2014-11-02 20:15:00 ----D---- C:\Windows\SoftwareDistribution
2014-11-01 08:26:13 ----D---- C:\Windows\AppReadiness
2014-10-31 18:35:37 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-28 09:47:31 ----HD---- C:\Program Files\WindowsApps
2014-10-25 16:11:55 ----D---- C:\Windows\system32\config
2014-10-25 15:10:51 ----D---- C:\Users\muller11\AppData\Roaming\DAEMON Tools Lite
2014-10-25 15:09:41 ----SHD---- C:\Windows\Installer
2014-10-25 15:09:39 ----RD---- C:\Program Files (x86)
2014-10-24 09:16:39 ----D---- C:\Windows\system32\MRT
2014-10-24 09:13:30 ----A---- C:\Windows\system32\MRT.exe
2014-10-22 19:32:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-22 19:32:19 ----D---- C:\Windows\system32\DriverStore
2014-10-22 19:30:35 ----D---- C:\Windows\system32\drivers
2014-10-19 17:04:25 ----D---- C:\Users\muller11\AppData\Roaming\Skype
2014-10-19 11:41:13 ----D---- C:\Windows\rescache
2014-10-18 17:15:26 ----D---- C:\Windows\WinSxS
2014-10-18 17:15:08 ----RSD---- C:\Windows\assembly
2014-10-17 06:26:53 ----D---- C:\Windows\MediaViewer
2014-10-17 06:26:53 ----D---- C:\Windows\FileManager
2014-10-17 06:26:53 ----D---- C:\Windows\Camera
2014-10-17 06:26:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-10-17 06:26:52 ----D---- C:\Program Files\Internet Explorer
2014-10-17 06:26:52 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-17 06:26:51 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 18:36:18 ----D---- C:\ProgramData\Microsoft Help
2014-10-16 18:36:05 ----D---- C:\Windows\CbsTemp
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvapi64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvsvc64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvcpl.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvvsvc.exe
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvsvcr.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvshext.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvmctray.dll
2014-10-15 20:28:56 ----D---- C:\Windows\system32\catroot2
2014-10-15 17:10:28 ----D---- C:\Windows\Logs
2014-10-15 17:09:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-06 12:38:12 ----D---- C:\ProgramData\Oracle
2014-10-06 12:38:03 ----D---- C:\Program Files (x86)\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-04-10 386680]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;@oem10.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-02-16 53816]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-02-16 11576]
R3 LVRS64;@oem4.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;@oem5.inf,%PID_09A4_DD%(UVC);Logitech QuickCam E3500(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2008-07-26 5068056]
R3 NVHDA;@oem88.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-09-17 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-10-16 13190288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 20288]
R3 nvvad_WaveExtensible;@oem90.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2014-01-06 11880]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 dtscsidrv;dtscsidrv; C:\Windows\system32\drivers\dtscsidrv.sys [2014-04-11 309248]
S3 ggflt;@oem66.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\Windows\System32\drivers\ggflt.sys [2014-07-14 16088]
S3 ggsomc;@oem66.inf,%SvcDesc%;SOMC USB Flash Driver; C:\Windows\System32\drivers\ggsomc.sys [2014-07-14 30424]
S3 IT9135BDA;@oem15.inf,%IT9135Devcie.FriendlyName%;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2010-02-03 113280]
S3 kvnet;@oem1.inf,%kvnet.Service.DispName%;Kerio Virtual Network Adapter; C:\Windows\system32\DRIVERS\kvnet.sys [2014-10-05 30208]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1149760]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1796928]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19440960]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-16 933064]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-05 76888]
R2 Start8;Stardock Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [2014-03-28 143288]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410952]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2014-01-28 2412344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-04 267440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-31 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-31 114288]
-----------------EOF-----------------
Run by muller11 at 2014-11-04 17:42:14
Microsoft Windows 8.1
System drive C: has 226 GB (63%) free of 358 GB
Total RAM: 4094 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:42:16, on 4. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\muller11.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Stardock Start8 (Start8) - Stardock Software, Inc - C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8141 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\Stardock\Start8\Start8_64.exe" START
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 4bdb4c18-b7f5-41fb-9945-f176000b4004 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-87cc5a5c-74b0-4e59-bc0f-f657d2cbc708 -SystemEventPortName:HostProcess-9a202bb4-a298-4e26-842d-a6e837323c1c -IoCancelEventPortName:HostProcess-05f8743e-9bcb-44a9-a6cd-b82ded349941 -NonStateChangingEventPortName:HostProcess-4b5dab08-83c8-477e-93b8-a4c85ab37c17 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a46b63e8-ebc0-4125-92cf-e3a7e3464f97 -DeviceGroupId:WpdFsGroup
dashost.exe {4019a1ab-c647-4fea-90490a4c07409ea2}
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:1904
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
C:\Windows\System32\skydrive.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\WinStore\WSHost.exe -Embedding
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\muller11\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\muller11\AppData\Roaming\Mozilla\Firefox\Profiles\tgv7dsmz.default-1414938995270
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.67.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2461504]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2014-05-23 466656]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-09-26 6482200]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\Users\muller11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlite.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-04 17:35:54 ----D---- C:\_OTM
2014-11-03 20:40:07 ----D---- C:\AdwCleaner
2014-11-03 19:56:48 ----D---- C:\Program Files\trend micro
2014-11-03 19:56:46 ----D---- C:\rsit
2014-10-22 19:32:21 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvopencl.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglv64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvmcumd.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvinitx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvIFR64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\NvFBC64.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispgenco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvdispco6434448.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuvid.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\nvcuda.dll
2014-10-22 19:28:38 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-10-22 19:28:37 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-10-22 19:28:37 ----A---- C:\Windows\system32\nvcompiler.dll
2014-10-17 12:49:21 ----D---- C:\Users\muller11\AppData\Roaming\Kerio
2014-10-17 12:48:01 ----D---- C:\Program Files (x86)\My Company Name
2014-10-16 18:31:46 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2014-10-15 20:32:11 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 20:31:38 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2014-10-15 20:31:38 ----A---- C:\Windows\system32\MrmCoreR.dll
2014-10-15 20:31:35 ----A---- C:\Windows\system32\winbici.dll
2014-10-15 20:31:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuaueng.dll
2014-10-15 20:31:21 ----A---- C:\Windows\system32\wuapi.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuwebv.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups2.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wups.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wudriver.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wucltux.dll
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuauclt.exe
2014-10-15 20:31:20 ----A---- C:\Windows\system32\wuapp.exe
2014-10-15 20:30:36 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 20:30:35 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-10-15 20:30:24 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 20:30:22 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 20:30:21 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-10-15 20:30:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-10-15 20:30:20 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 20:30:19 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 20:30:18 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 20:30:17 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 20:30:06 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 20:30:06 ----A---- C:\Windows\system32\packager.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 20:30:05 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-10-15 20:30:05 ----A---- C:\Windows\system32\msi.dll
2014-10-15 17:34:06 ----D---- C:\Users\muller11\AppData\Roaming\GHISLER
2014-10-12 15:23:51 ----D---- C:\ProgramData\Orbit
2014-10-06 12:38:49 ----D---- C:\Users\muller11\AppData\Roaming\Oracle
2014-10-06 12:38:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-06 12:38:03 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-05 20:05:02 ----A---- C:\Windows\system32\drivers\kvnet.sys
======List of files/folders modified in the last 1 month======
2014-11-04 17:42:08 ----D---- C:\Windows\Prefetch
2014-11-04 17:41:19 ----D---- C:\Windows\Temp
2014-11-04 17:37:41 ----D---- C:\ProgramData\NVIDIA
2014-11-04 17:36:27 ----RD---- C:\Windows\System32
2014-11-04 17:36:27 ----D---- C:\Windows\SysWOW64
2014-11-04 17:36:27 ----D---- C:\Windows
2014-11-04 17:00:00 ----D---- C:\Windows\system32\sru
2014-11-04 16:41:55 ----SHD---- C:\System Volume Information
2014-11-04 16:37:04 ----D---- C:\Windows\Microsoft.NET
2014-11-04 15:40:13 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-11-04 15:40:11 ----D---- C:\Users\muller11\AppData\Roaming\vlc
2014-11-03 20:50:56 ----D---- C:\Windows\Inf
2014-11-03 20:50:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-03 20:44:02 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-03 19:56:48 ----RD---- C:\Program Files
2014-11-03 07:51:32 ----D---- C:\Windows\debug
2014-11-02 20:28:12 ----HD---- C:\ProgramData
2014-11-02 20:15:00 ----D---- C:\Windows\SoftwareDistribution
2014-11-01 08:26:13 ----D---- C:\Windows\AppReadiness
2014-10-31 18:35:37 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-28 09:47:31 ----HD---- C:\Program Files\WindowsApps
2014-10-25 16:11:55 ----D---- C:\Windows\system32\config
2014-10-25 15:10:51 ----D---- C:\Users\muller11\AppData\Roaming\DAEMON Tools Lite
2014-10-25 15:09:41 ----SHD---- C:\Windows\Installer
2014-10-25 15:09:39 ----RD---- C:\Program Files (x86)
2014-10-24 09:16:39 ----D---- C:\Windows\system32\MRT
2014-10-24 09:13:30 ----A---- C:\Windows\system32\MRT.exe
2014-10-22 19:32:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-22 19:32:19 ----D---- C:\Windows\system32\DriverStore
2014-10-22 19:30:35 ----D---- C:\Windows\system32\drivers
2014-10-19 17:04:25 ----D---- C:\Users\muller11\AppData\Roaming\Skype
2014-10-19 11:41:13 ----D---- C:\Windows\rescache
2014-10-18 17:15:26 ----D---- C:\Windows\WinSxS
2014-10-18 17:15:08 ----RSD---- C:\Windows\assembly
2014-10-17 06:26:53 ----D---- C:\Windows\MediaViewer
2014-10-17 06:26:53 ----D---- C:\Windows\FileManager
2014-10-17 06:26:53 ----D---- C:\Windows\Camera
2014-10-17 06:26:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-10-17 06:26:52 ----D---- C:\Program Files\Internet Explorer
2014-10-17 06:26:52 ----D---- C:\Program Files (x86)\Internet Explorer
2014-10-17 06:26:51 ----D---- C:\Windows\system32\cs-CZ
2014-10-16 18:36:18 ----D---- C:\ProgramData\Microsoft Help
2014-10-16 18:36:05 ----D---- C:\Windows\CbsTemp
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-10-16 17:54:03 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\OpenCL.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-10-16 17:54:03 ----A---- C:\Windows\system32\nvapi64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvsvc64.dll
2014-10-16 15:11:40 ----A---- C:\Windows\system32\nvcpl.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvvsvc.exe
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvsvcr.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvshext.dll
2014-10-16 15:11:36 ----A---- C:\Windows\system32\nvmctray.dll
2014-10-15 20:28:56 ----D---- C:\Windows\system32\catroot2
2014-10-15 17:10:28 ----D---- C:\Windows\Logs
2014-10-15 17:09:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-10-06 12:38:12 ----D---- C:\ProgramData\Oracle
2014-10-06 12:38:03 ----D---- C:\Program Files (x86)\Java
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-04-10 386680]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;@oem10.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-02-16 53816]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-02-16 11576]
R3 LVRS64;@oem4.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;@oem5.inf,%PID_09A4_DD%(UVC);Logitech QuickCam E3500(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2008-07-26 5068056]
R3 NVHDA;@oem88.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2014-09-17 197408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2014-10-16 13190288]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 20288]
R3 nvvad_WaveExtensible;@oem90.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2014-01-06 11880]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2013-12-13 121088]
S3 dtscsidrv;dtscsidrv; C:\Windows\system32\drivers\dtscsidrv.sys [2014-04-11 309248]
S3 ggflt;@oem66.inf,%SvcFltDesc%;SOMC USB Flash Driver Filter; C:\Windows\System32\drivers\ggflt.sys [2014-07-14 16088]
S3 ggsomc;@oem66.inf,%SvcDesc%;SOMC USB Flash Driver; C:\Windows\System32\drivers\ggsomc.sys [2014-07-14 30424]
S3 IT9135BDA;@oem15.inf,%IT9135Devcie.FriendlyName%;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2010-02-03 113280]
S3 kvnet;@oem1.inf,%kvnet.Service.DispName%;Kerio Virtual Network Adapter; C:\Windows\system32\DRIVERS\kvnet.sys [2014-10-05 30208]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1149760]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1796928]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19440960]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-10-16 933064]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-05-05 76888]
R2 Start8;Stardock Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [2014-03-28 143288]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-10-16 410952]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2014-01-28 2412344]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-04 267440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-31 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-31 114288]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119356
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalené pc, využtí paměti 95%
Log je již OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalené pc, využtí paměti 95%
Změna oproti včerejšku výrazná, zlepšení.
Nejsem zrovna expert, ale využití paměti cca 28 - 30 % při zapnutém prohlížeči a programech a pozadí je normální ???
Nejsem zrovna expert, ale využití paměti cca 28 - 30 % při zapnutém prohlížeči a programech a pozadí je normální ???
-
Rudy
- Site Admin
- Příspěvky: 119356
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalené pc, využtí paměti 95%
Myslím, že ano. Podívejte se ještě do správce úloh, co nejvíce systém zatěžuje.mulsak píše:Změna oproti včerejšku výrazná, zlepšení.
Nejsem zrovna expert, ale využití paměti cca 28 - 30 % při zapnutém prohlížeči a programech a pozadí je normální ???
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalené pc, využtí paměti 95%
Bez zapnutého prohlížeče ve správci úloh zatížení paměti 946 MB (23 % z celkové ), při sečtení všech spuštěných procesů, vč. na pozadí, mi to vychází 310 MB, na zbytek nedohlédnu, ale asi je to "normální", v práci to máme podobné, na dceřině ntb to samé. Asi to tak má být. Mockrát děkuji za pomoc.
-
Rudy
- Site Admin
- Příspěvky: 119356
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalené pc, využtí paměti 95%
Asi ano v tomto případě. Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?