Zdravím zase se mi navrátil ntb od známé s problémem že se nechce připojit k síti. Ntb se chová celkem normálně naběhl rychle jen si stěžovala že pár složek se přejmenovalo na "P NEBO "PPPP" dle mě se maximálně zasekl ..... přikládám log a prosím o radu děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jitka at 2015-04-15 17:22:15
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 133 GB (28%) free of 477 GB
Total RAM: 8058 MB (77% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
/QuitInfo:00000000000003DC;00000000000003E0; /AddRef;
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"taskhost.exe"
/QuitInfo:0000000000000630;0000000000000634; /AddRef;
/QuitInfo:0000000000000594;00000000000004E0;
/loadhooks /Parent:0000000000000934
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\tcpsvcs.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 0bcc0516-f104-4acc-aeaf-b5aad9441b02 1
\??\C:\Windows\system32\conhost.exe "1087871752-1376978335-192605144715494525389890594371191868538159490419066025885
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1222324389-134188548066603052-1307340171376791156-245996172501753206-1858357605
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\Explorer.EXE
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
ngservice.exe pipeserver
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\taskmgr.exe" /1
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-cf7fc5e8-5505-4487-bb51-52a9b967880a -SystemEventPortName:HostProcess-1454695e-e354-471c-a87e-bb820c9dccc5 -IoCancelEventPortName:HostProcess-9b1c436c-2099-4a46-b00b-b09a1c6eafbb -NonStateChangingEventPortName:HostProcess-05ae3bce-0126-401e-8218-57aeaf39803b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3cfe9f85-3b04-4fd3-8f65-7e4e44bfe736 -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Users\Jitka\Desktop\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
wmiadap.exe /R /T
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-18 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-18 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2012-05-22 3732880]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-07 170304]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-12-13 2824504]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-07 440640]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-09-05 1664000]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2012-08-07 398656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-14 5227648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-04-15 17:22:15 ----DC---- C:\rsit
2015-04-14 22:53:50 ----SHDC---- C:\Config.Msi
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups2.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wucltux.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-14 22:24:38 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\invagent.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\generaltel.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\devinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\appraiser.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aepic.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aeinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\acmigration.dll
2015-04-14 22:24:28 ----A---- C:\Windows\system32\aepdu.dll
2015-04-14 22:24:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-14 22:24:27 ----A---- C:\Windows\system32\gdi32.dll
2015-04-14 22:24:26 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-14 22:24:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\KernelBase.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\wow64win.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\lsasrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wow64.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\winsrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wdigest.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\srcore.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\rstrui.exe
2015-04-14 22:24:20 ----A---- C:\Windows\system32\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\conhost.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\sspicli.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\smss.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\lsass.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\auditpol.exe
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\wow64cpu.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\sspisrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\csrsrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\credssp.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-04-14 22:24:16 ----A---- C:\Windows\system32\apisetschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\user.exe
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\system32\adtschema.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msaudite.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\iernonce.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\ie4uinit.exe
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-04-14 22:24:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\urlmon.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\iedkcs32.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-14 22:24:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\iesetup.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-04-14 22:24:02 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\iertutil.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\ieapfltr.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\jsproxy.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\ieUnatt.exe
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmled.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieui.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieframe.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\dxtmsft.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\wininet.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\vbscript.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9diag.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\msrating.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-04-14 22:23:57 ----A---- C:\Windows\system32\mshtml.dll
2015-04-04 22:01:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-04 22:01:40 ----SD---- C:\Windows\system32\GWX
2015-03-26 15:50:47 ----D---- C:\Windows\SYSWOW64\.launcher_log
2015-03-20 09:27:30 ----A---- C:\Windows\system32\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\admwprox.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisrstap.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\system32\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\admwprox.dll
2015-03-20 09:27:28 ----A---- C:\Windows\SYSWOW64\iisrstap.dll
2015-03-20 02:52:25 ----D---- C:\Windows\SYSWOW64\BestPractices
2015-03-20 02:52:24 ----D---- C:\Windows\system32\BestPractices
2015-03-20 02:52:03 ----D---- C:\Windows\SYSWOW64\NV
2015-03-20 02:52:03 ----D---- C:\Windows\system32\NV
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
======List of files/folders modified in the last 1 month======
2015-04-15 17:22:04 ----D---- C:\Windows\Temp
2015-04-15 17:16:13 ----D---- C:\Windows\system32\config
2015-04-15 17:09:20 ----D---- C:\Users\Jitka\AppData\Roaming\TS3Client
2015-04-15 17:08:51 ----D---- C:\Windows\inf
2015-04-15 17:08:50 ----D---- C:\Windows\debug
2015-04-15 17:08:50 ----D---- C:\Windows
2015-04-15 17:02:17 ----D---- C:\Windows\tracing
2015-04-15 16:59:45 ----D---- C:\Windows\System32
2015-04-15 16:59:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-15 16:54:50 ----A---- C:\Windows\SYSWOW64\log.txt
2015-04-14 23:17:36 ----D---- C:\Windows\winsxs
2015-04-14 23:16:35 ----SD---- C:\Windows\system32\CompatTel
2015-04-14 23:16:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\SysWOW64
2015-04-14 23:16:35 ----D---- C:\Windows\system32\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\system32\appraiser
2015-04-14 23:16:34 ----D---- C:\Windows\AppPatch
2015-04-14 23:16:33 ----D---- C:\Windows\system32\drivers
2015-04-14 22:54:55 ----SHD---- C:\Windows\Installer
2015-04-14 22:54:54 ----D---- C:\Windows\Microsoft.NET
2015-04-14 22:54:28 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-14 22:53:00 ----D---- C:\Windows\system32\MRT
2015-04-14 22:49:56 ----A---- C:\Windows\system32\MRT.exe
2015-04-14 22:48:34 ----SHD---- C:\System Volume Information
2015-04-14 22:44:52 ----D---- C:\Windows\system32\NDF
2015-04-14 22:40:55 ----RSD---- C:\Windows\assembly
2015-04-14 22:34:12 ----D---- C:\Windows\SYSWOW64\en-US
2015-04-14 22:34:12 ----D---- C:\Windows\system32\en-US
2015-04-14 22:34:12 ----D---- C:\Program Files\Internet Explorer
2015-04-14 22:34:12 ----D---- C:\Program Files (x86)\Internet Explorer
2015-04-14 22:21:05 ----D---- C:\Windows\system32\catroot2
2015-04-14 22:14:36 ----D---- C:\Windows\system32\wbem
2015-04-14 22:14:07 ----D---- C:\Windows\Tasks
2015-04-14 22:14:07 ----D---- C:\Windows\system32\wfp
2015-04-14 22:14:07 ----D---- C:\Windows\system32\DriverStore
2015-04-14 22:14:04 ----D---- C:\Windows\system32\Tasks
2015-04-14 22:14:04 ----D---- C:\Windows\system32\drivers\etc
2015-04-14 22:14:01 ----D---- C:\Windows\Help
2015-04-14 22:13:58 ----D---- C:\Program Files\NVIDIA Corporation
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\WarThunder
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-04-14 22:13:55 ----D---- C:\Asw
2015-04-14 22:13:47 ----D---- C:\Windows\registration
2015-04-14 22:12:08 ----D---- C:\Program Files (x86)
2015-04-14 22:11:54 ----SHDC---- C:\$Recycle.Bin
2015-04-14 18:21:55 ----D---- C:\ProgramData\NVIDIA
2015-04-14 11:22:37 ----D---- C:\Windows\Prefetch
2015-04-14 11:16:41 ----D---- C:\PerfLogs
2015-04-04 22:01:46 ----D---- C:\Windows\Logs
2015-03-26 13:35:39 ----D---- C:\Users\Jitka\AppData\Roaming\Skype
2015-03-26 13:31:56 ----RD---- C:\Program Files (x86)\Skype
2015-03-26 13:31:39 ----D---- C:\ProgramData\Skype
2015-03-26 03:10:42 ----RD---- C:\Users
2015-03-25 13:28:03 ----SD---- C:\ProgramData\Microsoft
2015-03-25 13:08:39 ----D---- C:\Users\Jitka\AppData\Roaming\TeamViewer
2015-03-25 13:07:23 ----D---- C:\Program Files\CCleaner
2015-03-25 02:29:50 ----D---- C:\Program Files (x86)\Steam
2015-03-22 21:19:12 ----D---- C:\Users\Jitka\AppData\Roaming\NVIDIA
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\migration
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\inetsrv
2015-03-20 12:13:25 ----D---- C:\Windows\system32\inetsrv
2015-03-20 12:13:24 ----D---- C:\Windows\system32\migration
2015-03-20 09:53:40 ----D---- C:\Windows\rescache
2015-03-20 02:52:24 ----D---- C:\inetpub
2015-03-19 10:46:51 ----HD---- C:\ProgramData
2015-03-17 03:18:29 ----D---- C:\Windows\SoftwareDistribution
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-18 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-18 267632]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-03-13 32456]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-18 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-18 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-18 436624]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-18 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-18 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-18 116728]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2011-03-18 11576]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-01-18 271752]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-02-12 283064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-18 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-06-03 11499008]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-09-05 542208]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2009-07-14 13824]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 massfilter;Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys [2010-02-22 11776]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;Ovladač WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-18 50344]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 1148560]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-15 162648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-15 276824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 19823248]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-09-05 323072]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-15 362840]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-01-18 4012248]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-07 276288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-03-13 114688]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-04-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pravděpodobně nějaká neplecha + Rsit
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
TheSevenCz
- Návštěvník
- Příspěvky: 42
- Registrován: 08 črc 2012 13:00
-
Rudy
- Site Admin
- Příspěvky: 119674
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pravděpodobně nějaká neplecha + Rsit
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve >Scan< a potom na >Clean< (smazat)
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
TheSevenCz
- Návštěvník
- Příspěvky: 42
- Registrován: 08 črc 2012 13:00
Re: Pravděpodobně nějaká neplecha + Rsit
# AdwCleaner v4.100 - Report created 08/11/2014 at 19:52:20
# DB v2014-11-07.1
# Updated 08/11/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Jitka - JITKA-PC
# Running from : C:\Users\Jitka\Desktop\adwcleaner_4.100.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\Jitka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Google Chrome v38.0.2125.111
-\\ Comodo Dragon v33.1.0.1
[C:\Users\Jitka\AppData\Local\Comodo\Dragon\User Data\Default\preferences] - Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja
*************************
AdwCleaner[R0].txt - [1140 octets] - [08/11/2014 19:50:03]
AdwCleaner[S0].txt - [1060 octets] - [08/11/2014 19:52:20]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1120 octets] ##########
# AdwCleaner v4.201 - Log vytvořen 15/04/2015 v 22:21:18
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-08.1 [Local]
# Operační system : Windows 7 Professional Service Pack 1 (x64)
# Uživatelské jméno : Jitka - JITKA-PC
# Spuštěno z : C:\Users\Jitka\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plus500
Složka Smazáno : C:\Program Files (x86)\Plus500
Složka Smazáno : C:\Program Files (x86)\DriverToolkit
Složka Smazáno : C:\Users\Jitka\AppData\Local\Plus500
Složka Smazáno : C:\Users\Jitka\AppData\Local\DriverToolkit
Složka Smazáno : C:\Users\Jitka\AppData\Roaming\OpenCandy
Složka Smazáno : C:\Users\Jitka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plus500
Složka Smazáno : C:\Users\Jitka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Klíč Smazáno : HKCU\Software\DriverToolkit
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17728
-\\ Google Chrome v41.0.2272.118
[C:\Users\Jitka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : fcfenmboojpjinhpgggodefccipikbpd
-\\ Comodo Dragon v
[C:\Users\Jitka\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : aaaalipaokhkccgmgkdglfinfnfhflko
*************************
AdwCleaner[R0].txt - [3236 bytů] - [08/11/2014 20:50:03]
AdwCleaner[S0].txt - [3098 bytů] - [08/11/2014 20:52:20]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3156 bytů] ##########
# DB v2014-11-07.1
# Updated 08/11/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Jitka - JITKA-PC
# Running from : C:\Users\Jitka\Desktop\adwcleaner_4.100.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\Jitka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Google Chrome v38.0.2125.111
-\\ Comodo Dragon v33.1.0.1
[C:\Users\Jitka\AppData\Local\Comodo\Dragon\User Data\Default\preferences] - Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja
*************************
AdwCleaner[R0].txt - [1140 octets] - [08/11/2014 19:50:03]
AdwCleaner[S0].txt - [1060 octets] - [08/11/2014 19:52:20]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1120 octets] ##########
# AdwCleaner v4.201 - Log vytvořen 15/04/2015 v 22:21:18
# Aktualizováno 08/04/2015 by Xplode
# Databáze : 2015-04-08.1 [Local]
# Operační system : Windows 7 Professional Service Pack 1 (x64)
# Uživatelské jméno : Jitka - JITKA-PC
# Spuštěno z : C:\Users\Jitka\Desktop\adwcleaner_4.201.exe
# Nastavení : Čištění
***** [ Služby ] *****
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plus500
Složka Smazáno : C:\Program Files (x86)\Plus500
Složka Smazáno : C:\Program Files (x86)\DriverToolkit
Složka Smazáno : C:\Users\Jitka\AppData\Local\Plus500
Složka Smazáno : C:\Users\Jitka\AppData\Local\DriverToolkit
Složka Smazáno : C:\Users\Jitka\AppData\Roaming\OpenCandy
Složka Smazáno : C:\Users\Jitka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plus500
Složka Smazáno : C:\Users\Jitka\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Klíč Smazáno : HKCU\Software\DriverToolkit
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17728
-\\ Google Chrome v41.0.2272.118
[C:\Users\Jitka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Extension] : fcfenmboojpjinhpgggodefccipikbpd
-\\ Comodo Dragon v
[C:\Users\Jitka\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Smazáno [Extension] : aaaalipaokhkccgmgkdglfinfnfhflko
*************************
AdwCleaner[R0].txt - [3236 bytů] - [08/11/2014 20:50:03]
AdwCleaner[S0].txt - [3098 bytů] - [08/11/2014 20:52:20]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3156 bytů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119674
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pravděpodobně nějaká neplecha + Rsit
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
TheSevenCz
- Návštěvník
- Příspěvky: 42
- Registrován: 08 črc 2012 13:00
Re: Pravděpodobně nějaká neplecha + Rsit
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jitka at 2015-04-15 22:55:00
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 133 GB (28%) free of 477 GB
Total RAM: 8058 MB (80% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
/QuitInfo:000000000000038C;0000000000000390; /AddRef;
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
/QuitInfo:0000000000000634;0000000000000638; /AddRef;
/QuitInfo:0000000000000620;0000000000000640;
/loadhooks /Parent:0000000000000660
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\tcpsvcs.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 0bcc0516-f104-4acc-aeaf-b5aad9441b02 1
"C:\Windows\system32\Dwm.exe"
\??\C:\Windows\system32\conhost.exe "-375686205-1682745600183407493595063850-1772445514-90909630813395518891260818580
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
C:\Windows\Explorer.EXE
\??\C:\Windows\system32\conhost.exe "-640725262-1213805415-1924694935314994952-18130615301926396203-1585994301637795231
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\alg.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
ngservice.exe pipeserver
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Users\Jitka\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8f6a8a5e-01a4-42aa-a6dd-e1c75b70837a -SystemEventPortName:HostProcess-c2e6ebec-9405-4e23-bb41-83eb864be1be -IoCancelEventPortName:HostProcess-a9daac6e-2276-4fa7-858e-6d29799e0f13 -NonStateChangingEventPortName:HostProcess-35cdd63d-999f-4631-b8a9-980289d14653 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2931b041-3c5e-428e-9e9c-66d71b20ca1d -DeviceGroupId:WpdFsGroup
"C:\Users\Jitka\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-18 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-18 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2012-05-22 3732880]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-07 170304]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-12-13 2824504]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-07 440640]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-09-05 1664000]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2012-08-07 398656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-14 5227648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-04-15 17:22:15 ----DC---- C:\rsit
2015-04-14 22:53:50 ----SHDC---- C:\Config.Msi
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups2.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wucltux.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-14 22:24:38 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\invagent.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\generaltel.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\devinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\appraiser.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aepic.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aeinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\acmigration.dll
2015-04-14 22:24:28 ----A---- C:\Windows\system32\aepdu.dll
2015-04-14 22:24:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-14 22:24:27 ----A---- C:\Windows\system32\gdi32.dll
2015-04-14 22:24:26 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-14 22:24:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\KernelBase.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\wow64win.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\lsasrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wow64.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\winsrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wdigest.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\srcore.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\rstrui.exe
2015-04-14 22:24:20 ----A---- C:\Windows\system32\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\conhost.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\sspicli.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\smss.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\lsass.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\auditpol.exe
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\wow64cpu.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\sspisrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\csrsrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\credssp.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-04-14 22:24:16 ----A---- C:\Windows\system32\apisetschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\user.exe
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\system32\adtschema.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msaudite.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\iernonce.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\ie4uinit.exe
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-04-14 22:24:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\urlmon.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\iedkcs32.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-14 22:24:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\iesetup.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-04-14 22:24:02 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\iertutil.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\ieapfltr.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\jsproxy.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\ieUnatt.exe
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmled.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieui.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieframe.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\dxtmsft.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\wininet.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\vbscript.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9diag.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\msrating.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-04-14 22:23:57 ----A---- C:\Windows\system32\mshtml.dll
2015-04-04 22:01:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-04 22:01:40 ----SD---- C:\Windows\system32\GWX
2015-03-26 15:50:47 ----D---- C:\Windows\SYSWOW64\.launcher_log
2015-03-20 09:27:30 ----A---- C:\Windows\system32\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\admwprox.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisrstap.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\system32\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\admwprox.dll
2015-03-20 09:27:28 ----A---- C:\Windows\SYSWOW64\iisrstap.dll
2015-03-20 02:52:25 ----D---- C:\Windows\SYSWOW64\BestPractices
2015-03-20 02:52:24 ----D---- C:\Windows\system32\BestPractices
2015-03-20 02:52:03 ----D---- C:\Windows\SYSWOW64\NV
2015-03-20 02:52:03 ----D---- C:\Windows\system32\NV
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
======List of files/folders modified in the last 1 month======
2015-04-15 22:54:47 ----D---- C:\Windows\Temp
2015-04-15 22:26:50 ----D---- C:\Windows\System32
2015-04-15 22:26:50 ----D---- C:\Windows\inf
2015-04-15 22:26:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-15 22:24:34 ----A---- C:\Windows\SYSWOW64\log.txt
2015-04-15 22:22:12 ----D---- C:\Windows
2015-04-15 22:21:42 ----D---- C:\Windows\system32\config
2015-04-15 22:21:21 ----D---- C:\AdwCleaner
2015-04-15 22:21:18 ----D---- C:\Program Files (x86)
2015-04-15 17:26:44 ----D---- C:\Windows\tracing
2015-04-15 17:09:20 ----D---- C:\Users\Jitka\AppData\Roaming\TS3Client
2015-04-15 17:08:50 ----D---- C:\Windows\debug
2015-04-14 23:17:36 ----D---- C:\Windows\winsxs
2015-04-14 23:16:35 ----SD---- C:\Windows\system32\CompatTel
2015-04-14 23:16:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\SysWOW64
2015-04-14 23:16:35 ----D---- C:\Windows\system32\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\system32\appraiser
2015-04-14 23:16:34 ----D---- C:\Windows\AppPatch
2015-04-14 23:16:33 ----D---- C:\Windows\system32\drivers
2015-04-14 22:54:55 ----SHD---- C:\Windows\Installer
2015-04-14 22:54:54 ----D---- C:\Windows\Microsoft.NET
2015-04-14 22:54:28 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-14 22:53:00 ----D---- C:\Windows\system32\MRT
2015-04-14 22:49:56 ----A---- C:\Windows\system32\MRT.exe
2015-04-14 22:48:34 ----SHD---- C:\System Volume Information
2015-04-14 22:44:52 ----D---- C:\Windows\system32\NDF
2015-04-14 22:40:55 ----RSD---- C:\Windows\assembly
2015-04-14 22:34:12 ----D---- C:\Windows\SYSWOW64\en-US
2015-04-14 22:34:12 ----D---- C:\Windows\system32\en-US
2015-04-14 22:34:12 ----D---- C:\Program Files\Internet Explorer
2015-04-14 22:34:12 ----D---- C:\Program Files (x86)\Internet Explorer
2015-04-14 22:21:05 ----D---- C:\Windows\system32\catroot2
2015-04-14 22:14:36 ----D---- C:\Windows\system32\wbem
2015-04-14 22:14:07 ----D---- C:\Windows\Tasks
2015-04-14 22:14:07 ----D---- C:\Windows\system32\wfp
2015-04-14 22:14:07 ----D---- C:\Windows\system32\DriverStore
2015-04-14 22:14:04 ----D---- C:\Windows\system32\Tasks
2015-04-14 22:14:04 ----D---- C:\Windows\system32\drivers\etc
2015-04-14 22:14:01 ----D---- C:\Windows\Help
2015-04-14 22:13:58 ----D---- C:\Program Files\NVIDIA Corporation
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\WarThunder
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-04-14 22:13:55 ----D---- C:\Asw
2015-04-14 22:13:47 ----D---- C:\Windows\registration
2015-04-14 22:11:54 ----SHDC---- C:\$Recycle.Bin
2015-04-14 18:21:55 ----D---- C:\ProgramData\NVIDIA
2015-04-14 11:22:37 ----D---- C:\Windows\Prefetch
2015-04-14 11:16:41 ----D---- C:\PerfLogs
2015-04-04 22:01:46 ----D---- C:\Windows\Logs
2015-03-26 13:35:39 ----D---- C:\Users\Jitka\AppData\Roaming\Skype
2015-03-26 13:31:56 ----RD---- C:\Program Files (x86)\Skype
2015-03-26 13:31:39 ----D---- C:\ProgramData\Skype
2015-03-26 03:10:42 ----RD---- C:\Users
2015-03-25 13:28:03 ----SD---- C:\ProgramData\Microsoft
2015-03-25 13:08:39 ----D---- C:\Users\Jitka\AppData\Roaming\TeamViewer
2015-03-25 13:07:23 ----D---- C:\Program Files\CCleaner
2015-03-25 02:29:50 ----D---- C:\Program Files (x86)\Steam
2015-03-22 21:19:12 ----D---- C:\Users\Jitka\AppData\Roaming\NVIDIA
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\migration
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\inetsrv
2015-03-20 12:13:25 ----D---- C:\Windows\system32\inetsrv
2015-03-20 12:13:24 ----D---- C:\Windows\system32\migration
2015-03-20 09:53:40 ----D---- C:\Windows\rescache
2015-03-20 02:52:24 ----D---- C:\inetpub
2015-03-19 10:46:51 ----HD---- C:\ProgramData
2015-03-17 03:18:29 ----D---- C:\Windows\SoftwareDistribution
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-18 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-18 267632]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-03-13 32456]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-18 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-18 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-18 436624]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-18 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-18 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-18 116728]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2011-03-18 11576]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-01-18 271752]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-02-12 283064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-18 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-06-03 11499008]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-09-05 542208]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2009-07-14 13824]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 massfilter;Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys [2010-02-22 11776]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;Ovladač WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-18 50344]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 1148560]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-15 162648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-15 276824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 19823248]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-09-05 323072]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-15 362840]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-01-18 4012248]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-07 276288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-03-13 114688]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-04-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Run by Jitka at 2015-04-15 22:55:00
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 133 GB (28%) free of 477 GB
Total RAM: 8058 MB (80% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
/QuitInfo:000000000000038C;0000000000000390; /AddRef;
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
/QuitInfo:0000000000000634;0000000000000638; /AddRef;
/QuitInfo:0000000000000620;0000000000000640;
/loadhooks /Parent:0000000000000660
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\tcpsvcs.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 0bcc0516-f104-4acc-aeaf-b5aad9441b02 1
"C:\Windows\system32\Dwm.exe"
\??\C:\Windows\system32\conhost.exe "-375686205-1682745600183407493595063850-1772445514-90909630813395518891260818580
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
C:\Windows\Explorer.EXE
\??\C:\Windows\system32\conhost.exe "-640725262-1213805415-1924694935314994952-18130615301926396203-1585994301637795231
"C:\Program Files\Dell\QuickSet\quickset.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\alg.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
ngservice.exe pipeserver
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Users\Jitka\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8f6a8a5e-01a4-42aa-a6dd-e1c75b70837a -SystemEventPortName:HostProcess-c2e6ebec-9405-4e23-bb41-83eb864be1be -IoCancelEventPortName:HostProcess-a9daac6e-2276-4fa7-858e-6d29799e0f13 -NonStateChangingEventPortName:HostProcess-35cdd63d-999f-4631-b8a9-980289d14653 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2931b041-3c5e-428e-9e9c-66d71b20ca1d -DeviceGroupId:WpdFsGroup
"C:\Users\Jitka\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-18 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14 2117216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-18 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14 1709152]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2012-05-22 3732880]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-07 170304]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-12-13 2824504]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-07 440640]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-09-05 1664000]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2012-08-07 398656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-14 5227648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-04-15 17:22:15 ----DC---- C:\rsit
2015-04-14 22:53:50 ----SHDC---- C:\Config.Msi
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups2.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wucltux.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-14 22:24:38 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\invagent.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\generaltel.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\devinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\appraiser.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aepic.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aeinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\acmigration.dll
2015-04-14 22:24:28 ----A---- C:\Windows\system32\aepdu.dll
2015-04-14 22:24:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-14 22:24:27 ----A---- C:\Windows\system32\gdi32.dll
2015-04-14 22:24:26 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-14 22:24:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\KernelBase.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\wow64win.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\lsasrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wow64.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\winsrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wdigest.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\srcore.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\rstrui.exe
2015-04-14 22:24:20 ----A---- C:\Windows\system32\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\conhost.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\sspicli.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\smss.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\lsass.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\auditpol.exe
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\wow64cpu.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\sspisrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\csrsrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\credssp.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-04-14 22:24:16 ----A---- C:\Windows\system32\apisetschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\user.exe
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\system32\adtschema.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msaudite.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\iernonce.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\ie4uinit.exe
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-04-14 22:24:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\urlmon.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\iedkcs32.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-14 22:24:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\iesetup.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-04-14 22:24:02 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\iertutil.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\ieapfltr.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\jsproxy.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\ieUnatt.exe
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmled.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieui.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieframe.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\dxtmsft.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\wininet.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\vbscript.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9diag.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\msrating.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-04-14 22:23:57 ----A---- C:\Windows\system32\mshtml.dll
2015-04-04 22:01:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-04 22:01:40 ----SD---- C:\Windows\system32\GWX
2015-03-26 15:50:47 ----D---- C:\Windows\SYSWOW64\.launcher_log
2015-03-20 09:27:30 ----A---- C:\Windows\system32\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\admwprox.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisrstap.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\system32\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\admwprox.dll
2015-03-20 09:27:28 ----A---- C:\Windows\SYSWOW64\iisrstap.dll
2015-03-20 02:52:25 ----D---- C:\Windows\SYSWOW64\BestPractices
2015-03-20 02:52:24 ----D---- C:\Windows\system32\BestPractices
2015-03-20 02:52:03 ----D---- C:\Windows\SYSWOW64\NV
2015-03-20 02:52:03 ----D---- C:\Windows\system32\NV
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
======List of files/folders modified in the last 1 month======
2015-04-15 22:54:47 ----D---- C:\Windows\Temp
2015-04-15 22:26:50 ----D---- C:\Windows\System32
2015-04-15 22:26:50 ----D---- C:\Windows\inf
2015-04-15 22:26:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-15 22:24:34 ----A---- C:\Windows\SYSWOW64\log.txt
2015-04-15 22:22:12 ----D---- C:\Windows
2015-04-15 22:21:42 ----D---- C:\Windows\system32\config
2015-04-15 22:21:21 ----D---- C:\AdwCleaner
2015-04-15 22:21:18 ----D---- C:\Program Files (x86)
2015-04-15 17:26:44 ----D---- C:\Windows\tracing
2015-04-15 17:09:20 ----D---- C:\Users\Jitka\AppData\Roaming\TS3Client
2015-04-15 17:08:50 ----D---- C:\Windows\debug
2015-04-14 23:17:36 ----D---- C:\Windows\winsxs
2015-04-14 23:16:35 ----SD---- C:\Windows\system32\CompatTel
2015-04-14 23:16:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\SysWOW64
2015-04-14 23:16:35 ----D---- C:\Windows\system32\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\system32\appraiser
2015-04-14 23:16:34 ----D---- C:\Windows\AppPatch
2015-04-14 23:16:33 ----D---- C:\Windows\system32\drivers
2015-04-14 22:54:55 ----SHD---- C:\Windows\Installer
2015-04-14 22:54:54 ----D---- C:\Windows\Microsoft.NET
2015-04-14 22:54:28 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-14 22:53:00 ----D---- C:\Windows\system32\MRT
2015-04-14 22:49:56 ----A---- C:\Windows\system32\MRT.exe
2015-04-14 22:48:34 ----SHD---- C:\System Volume Information
2015-04-14 22:44:52 ----D---- C:\Windows\system32\NDF
2015-04-14 22:40:55 ----RSD---- C:\Windows\assembly
2015-04-14 22:34:12 ----D---- C:\Windows\SYSWOW64\en-US
2015-04-14 22:34:12 ----D---- C:\Windows\system32\en-US
2015-04-14 22:34:12 ----D---- C:\Program Files\Internet Explorer
2015-04-14 22:34:12 ----D---- C:\Program Files (x86)\Internet Explorer
2015-04-14 22:21:05 ----D---- C:\Windows\system32\catroot2
2015-04-14 22:14:36 ----D---- C:\Windows\system32\wbem
2015-04-14 22:14:07 ----D---- C:\Windows\Tasks
2015-04-14 22:14:07 ----D---- C:\Windows\system32\wfp
2015-04-14 22:14:07 ----D---- C:\Windows\system32\DriverStore
2015-04-14 22:14:04 ----D---- C:\Windows\system32\Tasks
2015-04-14 22:14:04 ----D---- C:\Windows\system32\drivers\etc
2015-04-14 22:14:01 ----D---- C:\Windows\Help
2015-04-14 22:13:58 ----D---- C:\Program Files\NVIDIA Corporation
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\WarThunder
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-04-14 22:13:55 ----D---- C:\Asw
2015-04-14 22:13:47 ----D---- C:\Windows\registration
2015-04-14 22:11:54 ----SHDC---- C:\$Recycle.Bin
2015-04-14 18:21:55 ----D---- C:\ProgramData\NVIDIA
2015-04-14 11:22:37 ----D---- C:\Windows\Prefetch
2015-04-14 11:16:41 ----D---- C:\PerfLogs
2015-04-04 22:01:46 ----D---- C:\Windows\Logs
2015-03-26 13:35:39 ----D---- C:\Users\Jitka\AppData\Roaming\Skype
2015-03-26 13:31:56 ----RD---- C:\Program Files (x86)\Skype
2015-03-26 13:31:39 ----D---- C:\ProgramData\Skype
2015-03-26 03:10:42 ----RD---- C:\Users
2015-03-25 13:28:03 ----SD---- C:\ProgramData\Microsoft
2015-03-25 13:08:39 ----D---- C:\Users\Jitka\AppData\Roaming\TeamViewer
2015-03-25 13:07:23 ----D---- C:\Program Files\CCleaner
2015-03-25 02:29:50 ----D---- C:\Program Files (x86)\Steam
2015-03-22 21:19:12 ----D---- C:\Users\Jitka\AppData\Roaming\NVIDIA
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\migration
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\inetsrv
2015-03-20 12:13:25 ----D---- C:\Windows\system32\inetsrv
2015-03-20 12:13:24 ----D---- C:\Windows\system32\migration
2015-03-20 09:53:40 ----D---- C:\Windows\rescache
2015-03-20 02:52:24 ----D---- C:\inetpub
2015-03-19 10:46:51 ----HD---- C:\ProgramData
2015-03-17 03:18:29 ----D---- C:\Windows\SoftwareDistribution
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-18 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-18 267632]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-03-13 32456]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-18 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-18 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-18 436624]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-18 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-18 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-18 116728]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2011-03-18 11576]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-01-18 271752]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-02-12 283064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-18 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-06-03 11499008]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-09-05 542208]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2009-07-14 13824]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 massfilter;Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys [2010-02-22 11776]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;Ovladač WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-18 50344]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 1148560]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-15 162648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-15 276824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 19823248]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-09-05 323072]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-15 362840]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-01-18 4012248]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-07 276288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-03-13 114688]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-04-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
TheSevenCz
- Návštěvník
- Příspěvky: 42
- Registrován: 08 črc 2012 13:00
Re: Pravděpodobně nějaká neplecha + Rsit
Zkoušel sem k internetu se to stále nepřipojí nemohla odinstaloval nějaký ovladač? nebo například něco poblokovat ve firewallu? zkoušel sem i firewall vypnout beze změny opravdu netuším ale připadá mi to spíše jako špatné nastavení než zásah nějakého "viru" nevíte mi náhodou poradit sem už v koncích ....
-
Rudy
- Site Admin
- Příspěvky: 119674
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pravděpodobně nějaká neplecha + Rsit
Jestli jsou ovladače v pořádku, se přesvědčíte ve správci zařízení. Nesmí tam být žádná výstraha.
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Program Files (x86)\Skype\Toolbars
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
:services
c2cautoupdatesvc
c2cpnrsvc
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
TheSevenCz
- Návštěvník
- Příspěvky: 42
- Registrován: 08 črc 2012 13:00
Re: Pravděpodobně nějaká neplecha + Rsit
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jitka at 2015-04-18 19:12:51
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 106 GB (22%) free of 477 GB
Total RAM: 8058 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:12:52, on 18.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jitka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://htp//WWW.SEZNAM.CZ
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9387 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\tcpsvcs.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 0bcc0516-f104-4acc-aeaf-b5aad9441b02 1
\??\C:\Windows\system32\conhost.exe "-666854368177136964843987205820762056801023564817213655327519928576371786842942
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-1067328992-169254684610991088721459893761-959123275-1844180200-1199477168-2082261420
taskeng.exe {42D20A7A-D593-45B8-B8D2-52E9A1246850}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Dell\QuickSet\quickset.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\System32\igfxpers.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\alg.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
/QuitInfo:0000000000000828;000000000000080C; /AddRef;
C:\Windows\system32\svchost.exe -k WindowsMobile
/QuitInfo:0000000000000834;0000000000000838; /AddRef;
/QuitInfo:0000000000000848;0000000000000824;
C:\Windows\system32\SearchIndexer.exe /Embedding
/loadhooks /Parent:0000000000001170
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
ngservice.exe pipeserver
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --on-initialized-event-handle=544 --parent-handle=552
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5196.0.1069866934\1745444145" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,41 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2828 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BackgroundRendererProcesses/Disallow/BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/ControlForLargePopulation/RefreshTokenDeviceId/Disabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Default/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_96/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UwSInterstitialStatus/On/V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Disabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5196 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5196.1.788884906\1708693799" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BackgroundRendererProcesses/Disallow/BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/ControlForLargePopulation/RefreshTokenDeviceId/Disabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Default/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_96/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UwSInterstitialStatus/On/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Disabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5196 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5196.2.1725187125\1886297905" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BackgroundRendererProcesses/Disallow/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/ControlForLargePopulation/RefreshTokenDeviceId/Disabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Default/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_96/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UwSInterstitialStatus/On/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Disabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5196 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5196.3.976756470\934014435" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5196.5.1448596822\1440668843" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
taskeng.exe {D15BE64A-9D91-49C8-AD6D-4AE989922132}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/Disallow/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/ControlForLargePopulation/RefreshTokenDeviceId/Disabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Default/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_96/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UwSInterstitialStatus/On/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Disabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5196 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5196.7.1568037284\1161704475" /prefetch:673131151
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource core
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Jitka\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-18 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-18 586968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2012-05-22 3732880]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-07 170304]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-12-13 2824504]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-07 440640]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-09-05 1664000]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2012-08-07 398656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-14 5227648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-04-18 09:19:10 ----D---- C:\Windows\CheckSur
2015-04-17 21:56:38 ----DC---- C:\_OTM
2015-04-15 17:22:15 ----DC---- C:\rsit
2015-04-14 22:53:50 ----SHDC---- C:\Config.Msi
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups2.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wucltux.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-14 22:24:38 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\invagent.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\generaltel.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\devinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\appraiser.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aepic.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aeinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\acmigration.dll
2015-04-14 22:24:28 ----A---- C:\Windows\system32\aepdu.dll
2015-04-14 22:24:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-14 22:24:27 ----A---- C:\Windows\system32\gdi32.dll
2015-04-14 22:24:26 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-14 22:24:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\KernelBase.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\wow64win.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\lsasrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wow64.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\winsrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wdigest.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\srcore.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\rstrui.exe
2015-04-14 22:24:20 ----A---- C:\Windows\system32\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\conhost.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\sspicli.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\smss.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\lsass.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\auditpol.exe
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\wow64cpu.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\sspisrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\csrsrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\credssp.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-04-14 22:24:16 ----A---- C:\Windows\system32\apisetschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\user.exe
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\system32\adtschema.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msaudite.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\iernonce.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\ie4uinit.exe
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-04-14 22:24:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\urlmon.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\iedkcs32.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-14 22:24:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\iesetup.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-04-14 22:24:02 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\iertutil.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\ieapfltr.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\jsproxy.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\ieUnatt.exe
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmled.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieui.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieframe.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\dxtmsft.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\wininet.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\vbscript.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9diag.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\msrating.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-04-14 22:23:57 ----A---- C:\Windows\system32\mshtml.dll
2015-04-04 22:01:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-04 22:01:40 ----SD---- C:\Windows\system32\GWX
2015-03-26 15:50:47 ----D---- C:\Windows\SYSWOW64\.launcher_log
2015-03-20 09:27:30 ----A---- C:\Windows\system32\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\admwprox.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisrstap.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\system32\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\admwprox.dll
2015-03-20 09:27:28 ----A---- C:\Windows\SYSWOW64\iisrstap.dll
2015-03-20 02:52:25 ----D---- C:\Windows\SYSWOW64\BestPractices
2015-03-20 02:52:24 ----D---- C:\Windows\system32\BestPractices
2015-03-20 02:52:03 ----D---- C:\Windows\SYSWOW64\NV
2015-03-20 02:52:03 ----D---- C:\Windows\system32\NV
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
======List of files/folders modified in the last 1 month======
2015-04-18 19:12:52 ----D---- C:\Windows\Temp
2015-04-18 19:12:52 ----D---- C:\Program Files\trend micro
2015-04-18 19:11:31 ----D---- C:\Windows\Prefetch
2015-04-18 19:07:45 ----D---- C:\Windows\system32\NDF
2015-04-18 19:05:32 ----D---- C:\Windows\System32
2015-04-18 19:05:32 ----D---- C:\Windows\inf
2015-04-18 19:05:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-18 19:00:47 ----A---- C:\Windows\SYSWOW64\log.txt
2015-04-18 18:58:28 ----D---- C:\Windows
2015-04-18 18:57:59 ----D---- C:\Windows\system32\config
2015-04-18 15:44:25 ----D---- C:\Windows\debug
2015-04-18 09:18:55 ----SHD---- C:\System Volume Information
2015-04-17 22:11:10 ----D---- C:\Windows\Microsoft.NET
2015-04-17 21:56:38 ----RD---- C:\Program Files (x86)\Skype
2015-04-17 21:56:38 ----D---- C:\Windows\Tasks
2015-04-17 10:52:59 ----RSD---- C:\Windows\assembly
2015-04-17 10:30:21 ----D---- C:\Windows\rescache
2015-04-17 10:29:05 ----D---- C:\Windows\AppCompat
2015-04-15 22:21:21 ----D---- C:\AdwCleaner
2015-04-15 22:21:18 ----D---- C:\Program Files (x86)
2015-04-15 17:26:44 ----D---- C:\Windows\tracing
2015-04-15 17:09:20 ----D---- C:\Users\Jitka\AppData\Roaming\TS3Client
2015-04-14 23:17:36 ----D---- C:\Windows\winsxs
2015-04-14 23:16:35 ----SD---- C:\Windows\system32\CompatTel
2015-04-14 23:16:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\SysWOW64
2015-04-14 23:16:35 ----D---- C:\Windows\system32\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\system32\appraiser
2015-04-14 23:16:34 ----D---- C:\Windows\AppPatch
2015-04-14 23:16:33 ----D---- C:\Windows\system32\drivers
2015-04-14 22:54:55 ----SHD---- C:\Windows\Installer
2015-04-14 22:54:28 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-14 22:53:00 ----D---- C:\Windows\system32\MRT
2015-04-14 22:49:56 ----A---- C:\Windows\system32\MRT.exe
2015-04-14 22:34:12 ----D---- C:\Windows\SYSWOW64\en-US
2015-04-14 22:34:12 ----D---- C:\Windows\system32\en-US
2015-04-14 22:34:12 ----D---- C:\Program Files\Internet Explorer
2015-04-14 22:34:12 ----D---- C:\Program Files (x86)\Internet Explorer
2015-04-14 22:21:05 ----D---- C:\Windows\system32\catroot2
2015-04-14 22:14:36 ----D---- C:\Windows\system32\wbem
2015-04-14 22:14:07 ----D---- C:\Windows\system32\wfp
2015-04-14 22:14:07 ----D---- C:\Windows\system32\DriverStore
2015-04-14 22:14:04 ----D---- C:\Windows\system32\Tasks
2015-04-14 22:14:04 ----D---- C:\Windows\system32\drivers\etc
2015-04-14 22:14:01 ----D---- C:\Windows\Help
2015-04-14 22:13:58 ----D---- C:\Program Files\NVIDIA Corporation
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\WarThunder
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-04-14 22:13:55 ----D---- C:\Asw
2015-04-14 22:13:47 ----D---- C:\Windows\registration
2015-04-14 22:11:54 ----SHDC---- C:\$Recycle.Bin
2015-04-14 18:21:55 ----D---- C:\ProgramData\NVIDIA
2015-04-14 11:16:41 ----D---- C:\PerfLogs
2015-04-04 22:01:46 ----D---- C:\Windows\Logs
2015-03-26 13:35:39 ----D---- C:\Users\Jitka\AppData\Roaming\Skype
2015-03-26 13:31:39 ----D---- C:\ProgramData\Skype
2015-03-26 03:10:42 ----RD---- C:\Users
2015-03-25 13:28:03 ----SD---- C:\ProgramData\Microsoft
2015-03-25 13:08:39 ----D---- C:\Users\Jitka\AppData\Roaming\TeamViewer
2015-03-25 13:07:23 ----D---- C:\Program Files\CCleaner
2015-03-25 02:29:50 ----D---- C:\Program Files (x86)\Steam
2015-03-22 21:19:12 ----D---- C:\Users\Jitka\AppData\Roaming\NVIDIA
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\migration
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\inetsrv
2015-03-20 12:13:25 ----D---- C:\Windows\system32\inetsrv
2015-03-20 12:13:24 ----D---- C:\Windows\system32\migration
2015-03-20 02:52:24 ----D---- C:\inetpub
2015-03-19 10:46:51 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-18 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-18 267632]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-03-13 32456]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-18 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-18 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-18 436624]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-18 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-18 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-18 116728]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2011-03-18 11576]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-01-18 271752]
R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
R3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2009-07-14 13824]
R3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-02-12 283064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-18 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-06-03 11499008]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-09-05 542208]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 massfilter;Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys [2010-02-22 11776]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;Ovladač WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-18 50344]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 1148560]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-15 162648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-15 276824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 19823248]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-09-05 323072]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-15 362840]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-01-18 4012248]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-07 276288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-03-13 114688]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-04-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Run by Jitka at 2015-04-18 19:12:51
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 106 GB (22%) free of 477 GB
Total RAM: 8058 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:12:52, on 18.4.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17728)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jitka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://htp//WWW.SEZNAM.CZ
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9387 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\tcpsvcs.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 0bcc0516-f104-4acc-aeaf-b5aad9441b02 1
\??\C:\Windows\system32\conhost.exe "-666854368177136964843987205820762056801023564817213655327519928576371786842942
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-1067328992-169254684610991088721459893761-959123275-1844180200-1199477168-2082261420
taskeng.exe {42D20A7A-D593-45B8-B8D2-52E9A1246850}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Dell\QuickSet\quickset.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\System32\igfxpers.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\alg.exe
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
/QuitInfo:0000000000000828;000000000000080C; /AddRef;
C:\Windows\system32\svchost.exe -k WindowsMobile
/QuitInfo:0000000000000834;0000000000000838; /AddRef;
/QuitInfo:0000000000000848;0000000000000824;
C:\Windows\system32\SearchIndexer.exe /Embedding
/loadhooks /Parent:0000000000001170
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
ngservice.exe pipeserver
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --on-initialized-event-handle=544 --parent-handle=552
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5196.0.1069866934\1745444145" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,41 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2828 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BackgroundRendererProcesses/Disallow/BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/ControlForLargePopulation/RefreshTokenDeviceId/Disabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Default/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_96/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UwSInterstitialStatus/On/V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Disabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5196 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5196.1.788884906\1708693799" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BackgroundRendererProcesses/Disallow/BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/ControlForLargePopulation/RefreshTokenDeviceId/Disabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Default/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_96/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UwSInterstitialStatus/On/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Disabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5196 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5196.2.1725187125\1886297905" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BackgroundRendererProcesses/Disallow/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/ControlForLargePopulation/RefreshTokenDeviceId/Disabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Default/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_96/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UwSInterstitialStatus/On/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Disabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5196 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5196.3.976756470\934014435" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5196.5.1448596822\1440668843" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
taskeng.exe {D15BE64A-9D91-49C8-AD6D-4AE989922132}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*BackgroundRendererProcesses/Disallow/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/NewSuggestType_A3_Stable_R1/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/ControlForLargePopulation/RefreshTokenDeviceId/Disabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Default/*SafeBrowsingIncidentReportingService/Default/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*ShowAppLauncherPromo/ShowPromoUntilDismissed/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_96/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UwSInterstitialStatus/On/*V8CacheOptions/default/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/*Win32kLockdown/Disabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=5196 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="5196.7.1568037284\1161704475" /prefetch:673131151
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /ua /installsource core
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Jitka\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-18 705448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-18 586968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2012-05-22 3732880]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-08-07 170304]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-12-13 2824504]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-08-07 440640]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-09-05 1664000]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\Windows\system32\hkcmd.exe [2012-08-07 398656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-03-14 5227648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-04-18 09:19:10 ----D---- C:\Windows\CheckSur
2015-04-17 21:56:38 ----DC---- C:\_OTM
2015-04-15 17:22:15 ----DC---- C:\rsit
2015-04-14 22:53:50 ----SHDC---- C:\Config.Msi
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuwebv.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups2.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wups.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wudriver.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wucltux.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuauclt.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapp.exe
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wuapi.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 22:24:39 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-04-14 22:24:38 ----A---- C:\Windows\system32\wuaueng.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\invagent.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\generaltel.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\devinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\appraiser.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aepic.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\aeinv.dll
2015-04-14 22:24:29 ----A---- C:\Windows\system32\acmigration.dll
2015-04-14 22:24:28 ----A---- C:\Windows\system32\aepdu.dll
2015-04-14 22:24:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-04-14 22:24:27 ----A---- C:\Windows\system32\gdi32.dll
2015-04-14 22:24:26 ----A---- C:\Windows\system32\drivers\http.sys
2015-04-14 22:24:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-04-14 22:24:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\ntdll.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\KernelBase.dll
2015-04-14 22:24:22 ----A---- C:\Windows\system32\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-04-14 22:24:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\wow64win.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\schannel.dll
2015-04-14 22:24:21 ----A---- C:\Windows\system32\lsasrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wow64.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\winsrv.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\wdigest.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\srcore.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\rstrui.exe
2015-04-14 22:24:20 ----A---- C:\Windows\system32\ncrypt.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\msv1_0.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\kerberos.dll
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-04-14 22:24:20 ----A---- C:\Windows\system32\conhost.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-04-14 22:24:19 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\TSpkg.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\sspicli.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\srclient.dll
2015-04-14 22:24:19 ----A---- C:\Windows\system32\smss.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\lsass.exe
2015-04-14 22:24:19 ----A---- C:\Windows\system32\auditpol.exe
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:18 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-04-14 22:24:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\wow64cpu.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\sspisrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\secur32.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\ntvdm64.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\csrsrv.dll
2015-04-14 22:24:18 ----A---- C:\Windows\system32\credssp.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-14 22:24:17 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-14 22:24:16 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-04-14 22:24:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-04-14 22:24:16 ----A---- C:\Windows\system32\apisetschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\user.exe
2015-04-14 22:24:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-04-14 22:24:15 ----A---- C:\Windows\system32\adtschema.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msobjs.dll
2015-04-14 22:24:14 ----A---- C:\Windows\system32\msaudite.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3r.dll
2015-04-14 22:24:08 ----A---- C:\Windows\system32\msxml3.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-04-14 22:24:07 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-04-14 22:24:07 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-04-14 22:24:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\iernonce.dll
2015-04-14 22:24:06 ----A---- C:\Windows\system32\ie4uinit.exe
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-04-14 22:24:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-04-14 22:24:05 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-04-14 22:24:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\urlmon.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-04-14 22:24:04 ----A---- C:\Windows\system32\iedkcs32.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-04-14 22:24:03 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-14 22:24:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\iesetup.dll
2015-04-14 22:24:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-04-14 22:24:02 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\iertutil.dll
2015-04-14 22:24:02 ----A---- C:\Windows\system32\ieapfltr.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-04-14 22:24:01 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\jsproxy.dll
2015-04-14 22:24:01 ----A---- C:\Windows\system32\ieUnatt.exe
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\mshtmled.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieui.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\ieframe.dll
2015-04-14 22:24:00 ----A---- C:\Windows\system32\dxtmsft.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\wininet.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\vbscript.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9diag.dll
2015-04-14 22:23:59 ----A---- C:\Windows\system32\jscript9.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\msrating.dll
2015-04-14 22:23:58 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-04-14 22:23:57 ----A---- C:\Windows\system32\mshtml.dll
2015-04-04 22:01:40 ----SD---- C:\Windows\SYSWOW64\GWX
2015-04-04 22:01:40 ----SD---- C:\Windows\system32\GWX
2015-03-26 15:50:47 ----D---- C:\Windows\SYSWOW64\.launcher_log
2015-03-20 09:27:30 ----A---- C:\Windows\system32\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisRtl.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\SYSWOW64\admwprox.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\wamregps.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisrstap.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\iisreset.exe
2015-03-20 09:27:29 ----A---- C:\Windows\system32\ahadmin.dll
2015-03-20 09:27:29 ----A---- C:\Windows\system32\admwprox.dll
2015-03-20 09:27:28 ----A---- C:\Windows\SYSWOW64\iisrstap.dll
2015-03-20 02:52:25 ----D---- C:\Windows\SYSWOW64\BestPractices
2015-03-20 02:52:24 ----D---- C:\Windows\system32\BestPractices
2015-03-20 02:52:03 ----D---- C:\Windows\SYSWOW64\NV
2015-03-20 02:52:03 ----D---- C:\Windows\system32\NV
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvopencl.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglv64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvIFR64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\NvFBC64.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispgenco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvdispco6434788.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuvid.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcuda.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\nvcompiler.dll
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2015-03-20 02:49:50 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
======List of files/folders modified in the last 1 month======
2015-04-18 19:12:52 ----D---- C:\Windows\Temp
2015-04-18 19:12:52 ----D---- C:\Program Files\trend micro
2015-04-18 19:11:31 ----D---- C:\Windows\Prefetch
2015-04-18 19:07:45 ----D---- C:\Windows\system32\NDF
2015-04-18 19:05:32 ----D---- C:\Windows\System32
2015-04-18 19:05:32 ----D---- C:\Windows\inf
2015-04-18 19:05:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-04-18 19:00:47 ----A---- C:\Windows\SYSWOW64\log.txt
2015-04-18 18:58:28 ----D---- C:\Windows
2015-04-18 18:57:59 ----D---- C:\Windows\system32\config
2015-04-18 15:44:25 ----D---- C:\Windows\debug
2015-04-18 09:18:55 ----SHD---- C:\System Volume Information
2015-04-17 22:11:10 ----D---- C:\Windows\Microsoft.NET
2015-04-17 21:56:38 ----RD---- C:\Program Files (x86)\Skype
2015-04-17 21:56:38 ----D---- C:\Windows\Tasks
2015-04-17 10:52:59 ----RSD---- C:\Windows\assembly
2015-04-17 10:30:21 ----D---- C:\Windows\rescache
2015-04-17 10:29:05 ----D---- C:\Windows\AppCompat
2015-04-15 22:21:21 ----D---- C:\AdwCleaner
2015-04-15 22:21:18 ----D---- C:\Program Files (x86)
2015-04-15 17:26:44 ----D---- C:\Windows\tracing
2015-04-15 17:09:20 ----D---- C:\Users\Jitka\AppData\Roaming\TS3Client
2015-04-14 23:17:36 ----D---- C:\Windows\winsxs
2015-04-14 23:16:35 ----SD---- C:\Windows\system32\CompatTel
2015-04-14 23:16:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\SysWOW64
2015-04-14 23:16:35 ----D---- C:\Windows\system32\cs-CZ
2015-04-14 23:16:35 ----D---- C:\Windows\system32\appraiser
2015-04-14 23:16:34 ----D---- C:\Windows\AppPatch
2015-04-14 23:16:33 ----D---- C:\Windows\system32\drivers
2015-04-14 22:54:55 ----SHD---- C:\Windows\Installer
2015-04-14 22:54:28 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-04-14 22:53:00 ----D---- C:\Windows\system32\MRT
2015-04-14 22:49:56 ----A---- C:\Windows\system32\MRT.exe
2015-04-14 22:34:12 ----D---- C:\Windows\SYSWOW64\en-US
2015-04-14 22:34:12 ----D---- C:\Windows\system32\en-US
2015-04-14 22:34:12 ----D---- C:\Program Files\Internet Explorer
2015-04-14 22:34:12 ----D---- C:\Program Files (x86)\Internet Explorer
2015-04-14 22:21:05 ----D---- C:\Windows\system32\catroot2
2015-04-14 22:14:36 ----D---- C:\Windows\system32\wbem
2015-04-14 22:14:07 ----D---- C:\Windows\system32\wfp
2015-04-14 22:14:07 ----D---- C:\Windows\system32\DriverStore
2015-04-14 22:14:04 ----D---- C:\Windows\system32\Tasks
2015-04-14 22:14:04 ----D---- C:\Windows\system32\drivers\etc
2015-04-14 22:14:01 ----D---- C:\Windows\Help
2015-04-14 22:13:58 ----D---- C:\Program Files\NVIDIA Corporation
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\WarThunder
2015-04-14 22:13:56 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-04-14 22:13:55 ----D---- C:\Asw
2015-04-14 22:13:47 ----D---- C:\Windows\registration
2015-04-14 22:11:54 ----SHDC---- C:\$Recycle.Bin
2015-04-14 18:21:55 ----D---- C:\ProgramData\NVIDIA
2015-04-14 11:16:41 ----D---- C:\PerfLogs
2015-04-04 22:01:46 ----D---- C:\Windows\Logs
2015-03-26 13:35:39 ----D---- C:\Users\Jitka\AppData\Roaming\Skype
2015-03-26 13:31:39 ----D---- C:\ProgramData\Skype
2015-03-26 03:10:42 ----RD---- C:\Users
2015-03-25 13:28:03 ----SD---- C:\ProgramData\Microsoft
2015-03-25 13:08:39 ----D---- C:\Users\Jitka\AppData\Roaming\TeamViewer
2015-03-25 13:07:23 ----D---- C:\Program Files\CCleaner
2015-03-25 02:29:50 ----D---- C:\Program Files (x86)\Steam
2015-03-22 21:19:12 ----D---- C:\Users\Jitka\AppData\Roaming\NVIDIA
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\migration
2015-03-20 12:13:25 ----D---- C:\Windows\SYSWOW64\inetsrv
2015-03-20 12:13:25 ----D---- C:\Windows\system32\inetsrv
2015-03-20 12:13:24 ----D---- C:\Windows\system32\migration
2015-03-20 02:52:24 ----D---- C:\inetpub
2015-03-19 10:46:51 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-18 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-18 267632]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2015-03-13 32456]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-18 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-18 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-18 436624]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-18 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-18 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-18 116728]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2011-03-18 11576]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-01-18 271752]
R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
R3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2009-07-14 13824]
R3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2015-02-12 283064]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2013-07-18 129224]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-06-03 11499008]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-09-05 542208]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 massfilter;Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys [2010-02-22 11776]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 WinUsb;Ovladač WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-18 50344]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 1148560]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-03-15 162648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-03-15 276824]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 19823248]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-03-13 935056]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2009-07-14 10240]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-09-05 323072]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-03-15 362840]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-01-18 4012248]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-08-07 276288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-03-13 114688]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-04-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119674
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pravděpodobně nějaká neplecha + Rsit
Dvouklikem na soubor C:\Program Files\trend micro\Jitka.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?