Zdravím, prosím o kontrolu logu - zasekává se mi pc a otevírají se mi okna s pluginy..díky
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-12-2015
Ran by Martina (administrator) on IDEA-PC (10-11-2016 14:12:19)
Running from C:\Users\Martina\Desktop\Složky\Programy\na viry\FRST-OlderVersion
Loaded Profiles: Martina (Available Profiles: Martina)
Platform: Windows 8 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
() C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe
(BitTorrent Inc.) C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-15] (Conexant Systems, Inc.)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-09-30] ()
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-02-08] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-02-08] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2012-05-02] (Vimicro)
HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [Philips Device Listener] => C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416 2012-02-15] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25424008 2016-10-24] (Dropbox, Inc.)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\Run: [BitTorrent] => C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [2142920 2016-09-08] (BitTorrent Inc.)
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {1c3be7a9-71dc-11e2-be6b-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\...\MountPoints2: {6a843982-84fe-11e3-bec9-2cd05a349e8e} - "F:\setup.exe"
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-1443460809-2058308057-2046692019-1001] => 127.0.0.1:8013
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{D58DC935-FA05-437B-BA74-886A24E255C4}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
URLSearchHook: [S-1-5-21-1443460809-2058308057-2046692019-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {24AB7B16-6C04-4E62-BADB-A3AF9C7BA5B2} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {28DBDC09-CD74-4291-80D1-789ACD6F9883} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {4E0C853B-1E34-451A-B946-3B8D7C8BCE5D} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&r ... {startPage}
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {6BC336E0-0860-4AFD-B849-E13CABFBD077} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {764482F2-C192-4032-B5B2-7848E6928461} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {8C35819E-0D88-4E0F-8946-73D1764A9500} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {A82AFC07-BDDB-4D91-91BD-B3D6AB1E5B87} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001 -> {CFDE9E19-18B2-4AC6-9F1E-14BD87C69D29} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-12-23] (IObit)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26] (Oracle Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default
FF NewTab: about:newtab
FF Homepage: hxxps://www.pesweb.cz/cz/naplnte-misky
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-08] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-06-26] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] ()
FF Extension: Google Translator for Firefox - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\extensions\translator@zoli.bod.xpi [2016-05-15]
FF Extension: Firefox Hotfix - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-30]
FF Extension: Adblock Plus - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\u60ghvfv.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-28]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2016-10-23] [not signed]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-10-23] [not signed]
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.pesweb.cz/cz/naplnte-misky"
CHR Profile: C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-21]
CHR Extension: (Dokumenty Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-21]
CHR Extension: (Disk Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-21]
CHR Extension: (Rapport) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2016-02-10]
CHR Extension: (YouTube) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-21]
CHR Extension: (Vyhledávání Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-21]
CHR Extension: (Tabulky Google) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-12]
CHR Extension: (Gmail) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-21]
CHR Extension: (Chrome Media Router) - C:\Users\Martina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-07]
CHR HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-30] (Qualcomm Atheros Commnucations) [File not signed]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [41576 2016-10-24] (Dropbox, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2520928 2016-03-03] (ESET)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1738808 2015-09-29] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6951992 2015-09-29] (GOG.com)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-05-27] (IObit)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2142728 2016-11-07] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2209296 2016-11-07] (Electronic Arts)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2387952 2016-10-06] (IBM Corp.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-30] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2016-05-16] ()
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-09-30] (Qualcomm Atheros)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-24] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264552 2016-04-14] (ESET)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [186784 2016-04-14] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [170792 2016-04-14] (ESET)
S3 GEARAspiWDM; C:\Windows\SysWOW64\Drivers\GEARAspiWDM.sys [15664 2011-07-15] (GEAR Software Inc.)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2016-05-16] ()
R1 RapportCerberus_1609053; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1609053.sys [1181672 2016-09-16] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [566248 2016-10-06] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [235184 2016-10-06] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [489712 2016-10-06] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [547888 2016-10-06] (IBM Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [975104 2012-08-24] (Vimicro Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [36288 2013-07-02] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [247216 2013-07-01] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-09 12:25 - 2016-11-09 12:35 - 05396140 _____ C:\Users\Martina\Downloads\Kuchyň - poptávka.xlsx
2016-11-08 15:32 - 2016-11-08 15:32 - 04120766 _____ C:\Users\Martina\Downloads\[AlecseyCOOL] Herve Leger Alisa Scroll jacquard studded dress with harness belt.zip
2016-11-08 15:31 - 2016-11-08 15:31 - 01136408 _____ C:\Users\Martina\Downloads\RihannaNeededMeTransparentDressingGown_SantosFashion.rar
2016-11-08 15:28 - 2016-11-08 15:28 - 05327428 _____ C:\Users\Martina\Downloads\a_model2_pose (Larrys Sims).zip
2016-11-08 15:08 - 2016-11-08 15:08 - 34240350 _____ C:\Users\Martina\Downloads\Nordic Inspiration Furniture By Milla.rar
2016-11-08 15:05 - 2016-11-08 15:05 - 00019549 _____ C:\Users\Martina\Downloads\Girls_PoseList.-Lorena_SimsItaly.Pose.rar
2016-11-08 15:04 - 2016-11-08 15:04 - 00077961 _____ C:\Users\Martina\Downloads\SAKORBSIMS_SELFIES_4.zip
2016-11-08 15:02 - 2016-11-08 15:02 - 00432724 _____ C:\Users\Martina\Downloads\Ts_AnkhNecklace.rar
2016-11-08 14:54 - 2016-11-08 14:54 - 04540876 _____ C:\Users\Martina\Downloads\Oh How I Love You poses.rar
2016-11-08 14:53 - 2016-11-08 14:53 - 02198681 _____ C:\Users\Martina\Downloads\[TSP]PatternedLeggings.zip
2016-11-08 14:50 - 2016-11-08 14:50 - 05853475 _____ C:\Users\Martina\Downloads\[LaCS] Winnie017 BodySuit Accesories.rar
2016-11-08 14:48 - 2016-11-08 14:48 - 02368273 _____ C:\Users\Martina\Downloads\[elevensims]posepack_ineedmygirl.zip
2016-11-08 14:43 - 2016-11-08 14:43 - 01923687 _____ C:\Users\Martina\Downloads\[LL SIMS] Givenchy Septum Ring.rar
2016-11-08 14:43 - 2016-11-08 14:43 - 00824069 _____ C:\Users\Martina\Downloads\Stradlinsims_Acc_Fleshtunnel.rar
2016-11-08 14:42 - 2016-11-08 14:43 - 00321093 _____ C:\Users\Martina\Downloads\[jelly]Lace Legging.rar
2016-11-08 14:39 - 2016-11-08 14:39 - 01387712 _____ C:\Users\Martina\Downloads\Flesh tunnels for females by Kima_Melon.rar
2016-11-08 14:35 - 2016-11-08 14:35 - 00084042 _____ C:\Users\Martina\Downloads\nessasimsSawyer.zip
2016-11-08 14:34 - 2016-11-08 14:34 - 00095346 _____ C:\Users\Martina\Downloads\nessasimsJacklyn.zip
2016-11-08 14:34 - 2016-11-08 14:34 - 00072651 _____ C:\Users\Martina\Downloads\nessasimsMacie.zip
2016-11-08 14:33 - 2016-11-08 14:33 - 00096554 _____ C:\Users\Martina\Downloads\nessasimsAmira.zip
2016-11-08 14:33 - 2016-11-08 14:33 - 00090268 _____ C:\Users\Martina\Downloads\nessasimsBlaire.zip
2016-11-08 14:33 - 2016-11-08 14:33 - 00088432 _____ C:\Users\Martina\Downloads\nessasimsAnya.zip
2016-11-08 14:32 - 2016-11-08 14:32 - 00112658 _____ C:\Users\Martina\Downloads\nessasimsAbby.zip
2016-11-08 14:32 - 2016-11-08 14:32 - 00096072 _____ C:\Users\Martina\Downloads\nessasimsSophie.zip
2016-11-08 14:32 - 2016-11-08 14:32 - 00091963 _____ C:\Users\Martina\Downloads\nessasimsRachael.zip
2016-11-08 14:31 - 2016-11-08 14:31 - 00100209 _____ C:\Users\Martina\Downloads\nessasimsAlex.zip
2016-11-07 21:55 - 2016-11-07 21:55 - 01287458 _____ C:\Users\Martina\Downloads\LorandiaSims3_Clothing_433.zip
2016-11-07 12:43 - 2016-11-07 12:43 - 00000000 ____D C:\Users\Martina\.QtWebEngineProcess
2016-11-07 12:43 - 2016-11-07 12:43 - 00000000 ____D C:\Users\Martina\.Origin
2016-11-07 03:09 - 2016-11-07 03:09 - 00001412 _____ C:\Users\Public\Desktop\The Sims™ 3.lnk
2016-11-07 03:09 - 2016-11-07 03:09 - 00001363 _____ C:\Users\Public\Desktop\The Sims™ 3 Without Launcher.lnk
2016-11-07 03:09 - 2016-11-07 03:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims™ 3 + All Expansions
2016-11-07 02:05 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_7.dll
2016-11-07 02:05 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_7.dll
2016-11-07 02:05 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_7.dll
2016-11-07 02:05 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_7.dll
2016-11-07 02:05 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_5.dll
2016-11-07 02:05 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_5.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_43.dll
2016-11-07 02:05 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_43.dll
2016-11-07 02:05 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_6.dll
2016-11-07 02:05 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_6.dll
2016-11-07 02:05 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_6.dll
2016-11-07 02:05 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_6.dll
2016-11-07 02:05 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_4.dll
2016-11-07 02:05 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_4.dll
2016-11-07 02:05 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_7.dll
2016-11-07 02:05 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_7.dll
2016-11-07 02:05 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_5.dll
2016-11-07 02:05 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_5.dll
2016-11-07 02:05 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_5.dll
2016-11-07 02:05 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_5.dll
2016-11-07 02:05 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_42.dll
2016-11-07 02:05 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_42.dll
2016-11-07 02:04 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_3.dll
2016-11-07 02:04 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_3.dll
2016-11-07 02:04 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_42.dll
2016-11-07 02:04 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_42.dll
2016-11-07 02:04 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_42.dll
2016-11-07 02:04 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_42.dll
2016-11-07 02:04 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_42.dll
2016-11-07 02:04 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_42.dll
2016-11-07 02:04 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_42.dll
2016-11-07 02:04 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_42.dll
2016-11-07 02:04 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2016-11-07 02:04 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_4.dll
2016-11-07 02:04 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_4.dll
2016-11-07 02:04 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2016-11-07 02:04 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2016-11-07 02:04 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_6.dll
2016-11-07 02:04 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2016-11-07 02:04 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_41.dll
2016-11-07 02:04 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_41.dll
2016-11-07 02:04 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_41.dll
2016-11-07 02:04 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_41.dll
2016-11-07 02:04 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_41.dll
2016-11-07 02:04 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2016-11-07 02:04 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_40.dll
2016-11-07 02:04 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2016-11-07 02:04 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_40.dll
2016-11-07 02:03 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_3.dll
2016-11-07 02:03 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_3.dll
2016-11-07 02:03 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_3.dll
2016-11-07 02:03 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_3.dll
2016-11-07 02:03 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_2.dll
2016-11-07 02:03 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_2.dll
2016-11-07 02:03 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_5.dll
2016-11-07 02:03 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_5.dll
2016-11-07 02:03 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2016-11-07 02:03 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_40.dll
2016-11-07 02:03 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_2.dll
2016-11-07 02:03 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_2.dll
2016-11-07 02:03 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_1.dll
2016-11-07 02:03 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_1.dll
2016-11-07 02:03 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_2.dll
2016-11-07 02:03 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_2.dll
2016-11-07 02:03 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_39.dll
2016-11-07 02:03 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2016-11-07 02:03 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_39.dll
2016-11-07 02:03 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2016-11-07 02:03 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_39.dll
2016-11-07 02:03 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2016-11-07 02:03 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2016-11-07 02:03 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_1.dll
2016-11-07 02:03 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_1.dll
2016-11-07 02:03 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2016-11-07 02:03 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2016-11-07 02:03 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_0.dll
2016-11-07 02:03 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_4.dll
2016-11-07 02:03 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2016-11-07 02:03 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2016-11-07 02:03 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_38.dll
2016-11-07 02:03 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2016-11-07 02:03 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_38.dll
2016-11-07 02:02 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2016-11-07 02:02 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_38.dll
2016-11-07 02:02 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2016-11-07 02:02 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_0.dll
2016-11-07 02:02 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_0.dll
2016-11-07 02:02 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2016-11-07 02:02 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2016-11-07 02:02 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_3.dll
2016-11-07 02:02 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2016-11-07 02:02 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_37.dll
2016-11-07 02:02 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2016-11-07 02:02 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_37.dll
2016-11-07 02:02 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2016-11-07 02:02 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_37.dll
2016-11-07 02:01 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2016-11-07 02:01 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_10.dll
2016-11-07 02:01 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2016-11-07 02:01 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_2.dll
2016-11-07 02:01 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2016-11-07 02:01 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_36.dll
2016-11-07 02:01 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2016-11-07 02:01 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_36.dll
2016-11-07 02:01 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2016-11-07 02:01 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_36.dll
2016-11-07 02:01 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2016-11-07 02:01 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_9.dll
2016-11-07 02:01 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_35.dll
2016-11-07 02:01 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_35.dll
2016-11-07 02:01 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2016-11-07 02:01 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_35.dll
2016-11-07 02:01 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2016-11-07 02:01 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_35.dll
2016-11-07 02:01 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2016-11-07 02:01 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_8.dll
2016-11-07 02:00 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2016-11-07 02:00 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_34.dll
2016-11-07 02:00 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2016-11-07 02:00 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_34.dll
2016-11-07 02:00 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2016-11-07 02:00 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_34.dll
2016-11-07 02:00 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2016-11-07 02:00 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_7.dll
2016-11-07 02:00 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\windows\system32\xinput1_3.dll
2016-11-07 02:00 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_3.dll
2016-11-07 02:00 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2016-11-07 02:00 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_33.dll
2016-11-07 02:00 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2016-11-07 02:00 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_33.dll
2016-11-07 02:00 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2016-11-07 02:00 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_33.dll
2016-11-07 02:00 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2016-11-07 02:00 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_1.dll
2016-11-07 02:00 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2016-11-07 02:00 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_6.dll
2016-11-07 02:00 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_5.dll
2016-11-07 02:00 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2016-11-07 02:00 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_32.dll
2016-11-07 02:00 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_32.dll
2016-11-07 02:00 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2016-11-07 02:00 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10.dll
2016-11-07 02:00 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_4.dll
2016-11-07 02:00 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2016-11-07 01:59 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_31.dll
2016-11-07 01:59 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_31.dll
2016-11-07 01:59 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2016-11-07 01:59 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2016-11-07 01:59 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_3.dll
2016-11-07 01:59 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_2.dll
2016-11-07 01:59 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_2.dll
2016-11-07 01:59 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2016-11-07 01:59 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_1.dll
2016-11-07 01:59 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_1.dll
2016-11-07 01:59 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\windows\system32\xinput1_1.dll
2016-11-07 01:59 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_1.dll
2016-11-07 01:58 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_30.dll
2016-11-07 01:58 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_30.dll
2016-11-07 01:58 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_29.dll
2016-11-07 01:58 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_29.dll
2016-11-07 01:58 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_0.dll
2016-11-07 01:58 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_0.dll
2016-11-07 01:58 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_0.dll
2016-11-07 01:58 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_0.dll
2016-11-07 01:58 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_28.dll
2016-11-07 01:58 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_28.dll
2016-11-07 01:58 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_27.dll
2016-11-07 01:58 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_27.dll
2016-11-07 01:58 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_26.dll
2016-11-07 01:58 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_26.dll
2016-11-07 01:58 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_25.dll
2016-11-07 01:58 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_25.dll
2016-11-07 01:58 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_24.dll
2016-11-07 01:58 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_24.dll
2016-11-05 20:27 - 2016-11-05 20:27 - 00002221 _____ C:\Users\Martina\AppData\Roaming\Microsoft\Windows\Start Menu\Siko Web Kitchen Planner.lnk
2016-11-05 20:27 - 2016-11-05 20:27 - 00002219 _____ C:\Users\Martina\Desktop\Siko Web Kitchen Planner.lnk
2016-11-05 20:26 - 2016-11-05 20:27 - 00000000 ____D C:\Users\Martina\AppData\LocalLow\SquareClock.Production_Home_Siko_Web
2016-11-05 20:26 - 2016-11-05 20:27 - 00000000 ____D C:\Users\Martina\AppData\Local\SquareClock.Production_Home_Siko_Web
2016-11-05 20:17 - 2016-11-05 20:17 - 00427840 _____ (SquareClock SAS) C:\Users\Martina\Downloads\Siko_Web_Kitchen_Planner.exe
2016-11-05 20:09 - 2016-11-10 12:20 - 00000000 ____D C:\Users\Martina\AppData\LocalLow\BitTorrent
2016-11-05 12:59 - 2016-11-10 14:10 - 00000932 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-05 12:59 - 2016-11-10 12:18 - 00000928 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-01 16:49 - 2016-11-01 17:31 - 554490851 _____ C:\Users\Martina\Downloads\Hra_o_truny_S04E02_lev_a_ruze_cz_dab.avi
2016-11-01 15:23 - 2016-11-01 16:10 - 612357170 _____ C:\Users\Martina\Downloads\Hra_o_truny_S04E01_dva_mece_cz_dab.avi
2016-11-01 14:40 - 2016-11-01 14:40 - 00001579 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2016-11-01 14:40 - 2016-11-01 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hry
2016-11-01 13:45 - 2016-11-01 13:45 - 00000000 ____D C:\Hry
2016-10-31 15:27 - 2014-10-22 20:49 - 00000000 ____D C:\Users\Martina\Desktop\The Sims 4
2016-10-28 16:56 - 2016-10-28 17:15 - 339424442 _____ C:\Users\Martina\Downloads\10 Mhysa.avi
2016-10-28 09:38 - 2016-10-28 09:52 - 254322276 _____ C:\Users\Martina\Downloads\09 Deště Kastameru.avi
2016-10-28 06:30 - 2016-10-28 06:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-10-27 17:57 - 2016-10-27 18:14 - 296652816 _____ C:\Users\Martina\Downloads\08 Druzí synové.avi
2016-10-26 18:18 - 2016-10-26 18:54 - 603407760 _____ C:\Users\Martina\Downloads\307_o-medvedovi-a-krasne-panne.avi
2016-10-24 19:36 - 2016-10-29 21:04 - 00000000 ____D C:\Users\Martina\Downloads\The Matrix Revolutions (2003)
2016-10-24 14:06 - 2016-10-24 14:06 - 00075888 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2016-10-24 14:06 - 2016-10-24 14:06 - 00075888 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2016-10-24 14:06 - 2016-10-24 14:06 - 00075888 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2016-10-24 14:06 - 2016-10-24 14:06 - 00041576 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2016-10-23 13:36 - 2016-10-23 13:36 - 00040504 _____ C:\Users\Martina\Downloads\prezentace neonatola.odp
2016-10-23 11:45 - 2016-10-23 21:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-19 18:49 - 2016-10-19 19:21 - 387687109 _____ C:\Users\Martina\Downloads\Game.of.Thrones.S03E06.HDTV.x264-2HD.mp4
2016-10-17 19:11 - 2016-10-17 19:11 - 00000000 ____D C:\Users\Martina\Downloads\Subs
2016-10-15 16:51 - 2016-10-23 19:05 - 00000000 ____D C:\Users\Martina\Downloads\The Matrix Reloaded (2003) [1080p]
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-10 14:12 - 2015-03-30 13:16 - 00000000 ____D C:\FRST
2016-11-10 14:10 - 2013-11-26 20:58 - 00000000 ____D C:\Users\Martina\AppData\Roaming\BitTorrent
2016-11-10 13:36 - 2015-11-11 07:36 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-11-10 13:30 - 2016-05-13 20:20 - 00000976 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-10 12:21 - 2015-08-09 15:24 - 00000000 ___RD C:\Users\Martina\Dropbox
2016-11-10 12:19 - 2013-02-08 12:38 - 10799412 _____ C:\windows\system32\perfh005.dat
2016-11-10 12:19 - 2013-02-08 12:38 - 03419710 _____ C:\windows\system32\perfc005.dat
2016-11-10 12:19 - 2012-07-26 08:28 - 00005434 _____ C:\windows\system32\PerfStringBackup.INI
2016-11-10 01:05 - 2015-08-09 10:53 - 00003904 _____ C:\windows\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-10 01:05 - 2015-08-09 10:53 - 00003668 _____ C:\windows\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-10 00:48 - 2013-06-19 21:29 - 00000000 ____D C:\Users\Martina\AppData\Local\CrashDumps
2016-11-09 12:31 - 2013-06-19 08:07 - 18398208 ___SH C:\Users\Martina\Desktop\Thumbs.db
2016-11-08 23:38 - 2016-05-13 19:59 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-08 23:37 - 2013-06-18 11:03 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-11-08 23:36 - 2012-07-26 09:12 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-11-08 23:36 - 2012-07-26 09:12 - 00000000 ____D C:\windows\system32\Macromed
2016-11-08 23:34 - 2013-06-22 18:03 - 00015038 _____ C:\Users\Martina\Desktop\Nový textový dokument.txt
2016-11-07 22:05 - 2012-07-26 08:22 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-11-07 22:05 - 2012-07-26 06:26 - 00262144 ___SH C:\windows\system32\config\BBI
2016-11-07 21:45 - 2014-01-21 10:57 - 00424632 _____ C:\windows\system32\FNTCACHE.DAT
2016-11-07 12:44 - 2016-07-09 19:37 - 00000000 ____D C:\Users\Martina\Documents\Electronic Arts
2016-11-07 12:44 - 2014-09-08 11:51 - 00000000 ____D C:\ProgramData\Origin
2016-11-07 12:43 - 2014-09-08 12:44 - 00000000 ____D C:\Users\Martina\AppData\Roaming\Origin
2016-11-07 12:43 - 2014-09-08 11:50 - 00000000 ____D C:\Program Files (x86)\Origin
2016-11-07 12:43 - 2013-06-18 10:30 - 00000000 ____D C:\Users\Martina
2016-11-07 03:09 - 2014-01-23 21:11 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2016-11-07 01:58 - 2012-07-26 06:37 - 00000000 ____D C:\Windows
2016-11-07 01:55 - 2013-02-08 11:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-06 20:00 - 2016-07-09 13:43 - 00000000 ____D C:\ProgramData\ProductData
2016-11-04 05:14 - 2012-07-26 09:12 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-04 05:14 - 2012-07-26 09:12 - 00000000 ____D C:\windows\AUInstallAgent
2016-10-28 06:30 - 2015-08-09 10:53 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-10-27 18:33 - 2015-12-30 19:45 - 00002206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-27 18:33 - 2015-12-30 19:45 - 00002194 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-27 18:01 - 2013-06-18 10:41 - 00003600 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1443460809-2058308057-2046692019-1001
2016-10-25 12:22 - 2012-07-26 09:12 - 00000000 ____D C:\windows\system32\NDF
2016-10-23 21:57 - 2016-03-17 14:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-23 11:28 - 2014-02-26 12:27 - 00030536 _____ C:\Users\Martina\Desktop\Power Point.odp
2016-10-19 10:23 - 2015-04-02 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2016-10-14 15:11 - 2013-09-15 17:31 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-10-14 15:01 - 2013-06-18 10:35 - 00000000 ____D C:\Users\Martina\AppData\Roaming\Atheros
2016-10-11 14:09 - 2013-06-18 10:36 - 00000000 ____D C:\Users\Martina\Documents\Bluetooth Folder
==================== Files in the root of some directories =======
2016-11-05 20:27 - 2016-11-05 20:27 - 0032038 _____ () C:\Users\Martina\AppData\Local\SquareClock.Production_Home_Siko_WebIcon.ico
2013-06-18 11:15 - 2013-06-18 11:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-03-11 20:29 - 2016-03-11 20:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-02 20:43
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
zasekaný pc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
zasekaný pc
- Přílohy
-
- Addition.rar
- (13.36 KiB) Staženo 65 x
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zasekaný pc
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zasekaný pc
# AdwCleaner v6.030 - Logfile created 12/11/2016 at 17:01:57
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-12.1 [Server]
# Operating System : Windows 8 (X64)
# Username : Martina - IDEA-PC
# Running from : C:\Users\Martina\Downloads\adwcleaner_6.030.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key deleted: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\Conduit
[#] Key deleted on reboot: [x64] HKCU\Software\Conduit
[-] Value deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [mobilegeni daemon]
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1640 Bytes] - [19/04/2016 14:32:22]
C:\AdwCleaner\AdwCleaner[C3].txt - [997 Bytes] - [14/12/2015 14:40:55]
C:\AdwCleaner\AdwCleaner[C4].txt - [1316 Bytes] - [12/11/2016 17:01:57]
C:\AdwCleaner\AdwCleaner[S1].txt - [1533 Bytes] - [19/04/2016 14:26:38]
C:\AdwCleaner\AdwCleaner[S2].txt - [1778 Bytes] - [12/11/2016 16:02:07]
C:\AdwCleaner\AdwCleaner[S3].txt - [887 Bytes] - [14/12/2015 14:14:53]
########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [1607 Bytes] ##########
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-11-12.1 [Server]
# Operating System : Windows 8 (X64)
# Username : Martina - IDEA-PC
# Running from : C:\Users\Martina\Downloads\adwcleaner_6.030.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key deleted: HKU\S-1-5-21-1443460809-2058308057-2046692019-1001\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\Conduit
[#] Key deleted on reboot: [x64] HKCU\Software\Conduit
[-] Value deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [mobilegeni daemon]
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1640 Bytes] - [19/04/2016 14:32:22]
C:\AdwCleaner\AdwCleaner[C3].txt - [997 Bytes] - [14/12/2015 14:40:55]
C:\AdwCleaner\AdwCleaner[C4].txt - [1316 Bytes] - [12/11/2016 17:01:57]
C:\AdwCleaner\AdwCleaner[S1].txt - [1533 Bytes] - [19/04/2016 14:26:38]
C:\AdwCleaner\AdwCleaner[S2].txt - [1778 Bytes] - [12/11/2016 16:02:07]
C:\AdwCleaner\AdwCleaner[S3].txt - [887 Bytes] - [14/12/2015 14:14:53]
########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [1607 Bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zasekaný pc
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zasekaný pc
Logfile of random's system information tool 1.10 (written by random/random)
Run by Martina at 2016-11-13 18:28:35
Microsoft Windows 8
System drive C: has 2 GB (1%) free of 428 GB
Total RAM: 3962 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:28:47, on 13. 11. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe
C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe
C:\Program Files\trend micro\Martina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8013
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510P405PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\windows\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 11384 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe"
"dwm.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\CxAudMsg64.exe
C:\windows\system32\DbxSvc.exe
dashost.exe {9b5c9cb3-89ff-4825-86823884b0b1c45c}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe" -servicelaunch=true
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510P405PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
"C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe" BitTorrent_3648_0235C540_262193214 BT4823DF041B09 BitTorrent
"C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe" BitTorrent_3648_0235C838_787828690 BT4823DF041B09 BitTorrent
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Defender\MsMpEng.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="4704.0.1266201782\2039551629" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 4704 "\\.\pipe\gecko-crash-server-pipe.4704" tab
taskhost.exe
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe" BitTorrent_3648_00A91E38_404633138 BT4823DF041B09 BitTorrent
explorer.exe
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe15_ Global\UsGthrCtrlFltPipeMssGthrPipe15 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 552 560 568 65536 564
"C:\Users\Martina\Downloads\RSITx64(1).exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\Uninstaller_SkipUac_Martina.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
=========Mozilla firefox=========
ProfilePath - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\lisxg3qz.default-1478951034493
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
nppluginrichmediaplayer.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-12-23 2478880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-08 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-08 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-08 440640]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-15 887968]
"BtPreLoad"=C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [2012-09-30 64640]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-02-08 17079376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-02-08 191568]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HP Deskjet 3050A J611 series (NET)"=C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2012-10-17 2573416]
"BitTorrent"=C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [2016-09-08 2142920]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-07-26 508656]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2012-05-02 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"Philips Device Listener"=C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [2012-02-15 380416]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-11-07 25673776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"DisableCAD"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-11-13 17:29:13 ----D---- C:\windows\LastGood
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-stable.sys
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-dev.sys
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-canary.sys
2016-11-07 23:49:04 ----A---- C:\windows\system32\DbxSvc.exe
2016-11-07 02:05:46 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-11-07 02:05:46 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-11-07 02:05:46 ----A---- C:\windows\system32\XAudio2_7.dll
2016-11-07 02:05:46 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-11-07 02:05:44 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-11-07 02:05:44 ----A---- C:\windows\system32\xactengine3_7.dll
2016-11-07 02:05:41 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-11-07 02:05:41 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-11-07 02:05:40 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-11-07 02:05:40 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-11-07 02:05:38 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-11-07 02:05:38 ----A---- C:\windows\system32\d3dx11_43.dll
2016-11-07 02:05:36 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-11-07 02:05:36 ----A---- C:\windows\system32\d3dx10_43.dll
2016-11-07 02:05:34 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-11-07 02:05:34 ----A---- C:\windows\system32\D3DX9_43.dll
2016-11-07 02:05:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-11-07 02:05:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-11-07 02:05:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-11-07 02:05:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-11-07 02:05:29 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-11-07 02:05:29 ----A---- C:\windows\system32\xactengine3_6.dll
2016-11-07 02:05:27 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-11-07 02:05:27 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-11-07 02:05:23 ----A---- C:\windows\SYSWOW64\XAudio2_5.dll
2016-11-07 02:05:23 ----A---- C:\windows\system32\XAudio2_5.dll
2016-11-07 02:05:14 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-11-07 02:05:14 ----A---- C:\windows\system32\xactengine3_5.dll
2016-11-07 02:05:07 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-11-07 02:05:07 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-11-07 02:04:59 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-11-07 02:04:59 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-11-07 02:04:56 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-11-07 02:04:56 ----A---- C:\windows\system32\d3dx11_42.dll
2016-11-07 02:04:52 ----A---- C:\windows\SYSWOW64\d3dx10_42.dll
2016-11-07 02:04:52 ----A---- C:\windows\system32\d3dx10_42.dll
2016-11-07 02:04:41 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-11-07 02:04:41 ----A---- C:\windows\system32\D3DX9_42.dll
2016-11-07 02:04:36 ----A---- C:\windows\SYSWOW64\d3dx10_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\SYSWOW64\D3DCompiler_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\system32\d3dx10_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-11-07 02:04:31 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-11-07 02:04:31 ----A---- C:\windows\system32\D3DX9_41.dll
2016-11-07 02:04:26 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-11-07 02:04:26 ----A---- C:\windows\SYSWOW64\XAPOFX1_3.dll
2016-11-07 02:04:26 ----A---- C:\windows\system32\XAudio2_4.dll
2016-11-07 02:04:26 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-11-07 02:04:15 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-11-07 02:04:15 ----A---- C:\windows\system32\xactengine3_4.dll
2016-11-07 02:04:10 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-11-07 02:04:10 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-11-07 02:04:00 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\system32\d3dx10_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-11-07 02:03:54 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-11-07 02:03:54 ----A---- C:\windows\system32\D3DX9_40.dll
2016-11-07 02:03:50 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-11-07 02:03:50 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-11-07 02:03:50 ----A---- C:\windows\system32\XAudio2_3.dll
2016-11-07 02:03:50 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-11-07 02:03:48 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-11-07 02:03:48 ----A---- C:\windows\system32\xactengine3_3.dll
2016-11-07 02:03:46 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-11-07 02:03:46 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-11-07 02:03:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-11-07 02:03:42 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-11-07 02:03:41 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-11-07 02:03:41 ----A---- C:\windows\system32\XAudio2_2.dll
2016-11-07 02:03:39 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-11-07 02:03:39 ----A---- C:\windows\system32\xactengine3_2.dll
2016-11-07 02:03:34 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\system32\d3dx10_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-11-07 02:03:28 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-11-07 02:03:28 ----A---- C:\windows\system32\D3DX9_39.dll
2016-11-07 02:03:19 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-11-07 02:03:19 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-11-07 02:03:19 ----A---- C:\windows\system32\XAudio2_1.dll
2016-11-07 02:03:19 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-11-07 02:03:14 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-11-07 02:03:14 ----A---- C:\windows\system32\xactengine3_1.dll
2016-11-07 02:03:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-11-07 02:03:08 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-11-07 02:03:03 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\system32\d3dx10_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-11-07 02:02:59 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-11-07 02:02:59 ----A---- C:\windows\system32\D3DX9_38.dll
2016-11-07 02:02:52 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-11-07 02:02:52 ----A---- C:\windows\system32\XAudio2_0.dll
2016-11-07 02:02:47 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-11-07 02:02:47 ----A---- C:\windows\system32\xactengine3_0.dll
2016-11-07 02:02:39 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-11-07 02:02:39 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-11-07 02:02:26 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\system32\d3dx10_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-11-07 02:02:13 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-11-07 02:02:13 ----A---- C:\windows\system32\D3DX9_37.dll
2016-11-07 02:01:55 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-11-07 02:01:55 ----A---- C:\windows\system32\xactengine2_10.dll
2016-11-07 02:01:38 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\system32\d3dx10_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-11-07 02:01:28 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-11-07 02:01:28 ----A---- C:\windows\system32\d3dx9_36.dll
2016-11-07 02:01:24 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-11-07 02:01:24 ----A---- C:\windows\system32\xactengine2_9.dll
2016-11-07 02:01:16 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-11-07 02:01:16 ----A---- C:\windows\system32\d3dx10_35.dll
2016-11-07 02:01:15 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-11-07 02:01:15 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-11-07 02:01:06 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-11-07 02:01:06 ----A---- C:\windows\system32\d3dx9_35.dll
2016-11-07 02:01:03 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-11-07 02:01:03 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-11-07 02:01:03 ----A---- C:\windows\system32\xactengine2_8.dll
2016-11-07 02:01:03 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-11-07 02:00:59 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\system32\d3dx10_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-11-07 02:00:55 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-11-07 02:00:55 ----A---- C:\windows\system32\d3dx9_34.dll
2016-11-07 02:00:52 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-11-07 02:00:52 ----A---- C:\windows\system32\xinput1_3.dll
2016-11-07 02:00:45 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-11-07 02:00:45 ----A---- C:\windows\system32\xactengine2_7.dll
2016-11-07 02:00:38 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\system32\d3dx10_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-11-07 02:00:34 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-11-07 02:00:34 ----A---- C:\windows\system32\d3dx9_33.dll
2016-11-07 02:00:30 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-11-07 02:00:30 ----A---- C:\windows\system32\xactengine2_6.dll
2016-11-07 02:00:26 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-11-07 02:00:26 ----A---- C:\windows\system32\xactengine2_5.dll
2016-11-07 02:00:22 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-11-07 02:00:22 ----A---- C:\windows\system32\d3dx10.dll
2016-11-07 02:00:13 ----A---- C:\windows\SYSWOW64\d3dx9_32.dll
2016-11-07 02:00:13 ----A---- C:\windows\system32\d3dx9_32.dll
2016-11-07 02:00:02 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-11-07 02:00:02 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-11-07 02:00:02 ----A---- C:\windows\system32\xactengine2_4.dll
2016-11-07 02:00:02 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-11-07 01:59:55 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-11-07 01:59:55 ----A---- C:\windows\system32\d3dx9_31.dll
2016-11-07 01:59:52 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-11-07 01:59:52 ----A---- C:\windows\system32\xactengine2_3.dll
2016-11-07 01:59:50 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-11-07 01:59:50 ----A---- C:\windows\system32\xinput1_2.dll
2016-11-07 01:59:45 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-11-07 01:59:45 ----A---- C:\windows\system32\xactengine2_2.dll
2016-11-07 01:59:42 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-11-07 01:59:42 ----A---- C:\windows\system32\xinput1_1.dll
2016-11-07 01:59:40 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-11-07 01:59:40 ----A---- C:\windows\system32\xactengine2_1.dll
2016-11-07 01:58:59 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-11-07 01:58:59 ----A---- C:\windows\system32\d3dx9_30.dll
2016-11-07 01:58:54 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\system32\xactengine2_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-11-07 01:58:52 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-11-07 01:58:52 ----A---- C:\windows\system32\d3dx9_29.dll
2016-11-07 01:58:44 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-11-07 01:58:44 ----A---- C:\windows\system32\d3dx9_28.dll
2016-11-07 01:58:39 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-11-07 01:58:39 ----A---- C:\windows\system32\d3dx9_27.dll
2016-11-07 01:58:35 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-11-07 01:58:35 ----A---- C:\windows\system32\d3dx9_26.dll
2016-11-07 01:58:28 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-11-07 01:58:28 ----A---- C:\windows\system32\d3dx9_25.dll
2016-11-07 01:58:23 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-11-07 01:58:23 ----A---- C:\windows\system32\d3dx9_24.dll
2016-11-01 13:45:27 ----D---- C:\Hry
2016-10-23 11:45:51 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-11-13 18:28:42 ----D---- C:\Program Files\trend micro
2016-11-13 18:28:40 ----D---- C:\Users\Martina\AppData\Roaming\BitTorrent
2016-11-13 18:28:17 ----D---- C:\windows\Temp
2016-11-13 18:02:05 ----D---- C:\windows\system32\sru
2016-11-13 17:35:50 ----D---- C:\windows\system32\Drivers
2016-11-13 17:35:49 ----D---- C:\windows\Inf
2016-11-13 17:35:48 ----D---- C:\windows\system32\DriverStore
2016-11-13 17:30:24 ----D---- C:\windows\Prefetch
2016-11-13 17:29:13 ----AD---- C:\Windows
2016-11-13 16:41:51 ----AD---- C:\windows\System32
2016-11-13 16:41:51 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-11-12 17:06:43 ----A---- C:\windows\SYSWOW64\log.txt
2016-11-12 17:01:57 ----D---- C:\AdwCleaner
2016-11-12 16:08:31 ----D---- C:\windows\Microsoft.NET
2016-11-12 14:28:33 ----D---- C:\windows\Minidump
2016-11-10 22:09:45 ----D---- C:\Program Files (x86)\Dropbox
2016-11-10 14:15:45 ----D---- C:\FRST
2016-11-10 01:06:38 ----SHD---- C:\windows\Installer
2016-11-08 23:38:45 ----D---- C:\windows\system32\Tasks
2016-11-08 23:37:31 ----D---- C:\windows\SysWOW64
2016-11-08 23:36:54 ----D---- C:\windows\system32\Macromed
2016-11-08 23:36:41 ----D---- C:\windows\SYSWOW64\Macromed
2016-11-07 12:44:23 ----D---- C:\ProgramData\Origin
2016-11-07 12:43:48 ----D---- C:\Users\Martina\AppData\Roaming\Origin
2016-11-07 12:43:33 ----D---- C:\Program Files (x86)\Origin
2016-11-07 12:42:45 ----SHD---- C:\System Volume Information
2016-11-07 03:09:01 ----D---- C:\Program Files (x86)\Electronic Arts
2016-11-07 01:59:39 ----RSD---- C:\windows\assembly
2016-11-07 01:55:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-11-06 20:00:57 ----D---- C:\ProgramData\ProductData
2016-11-05 12:59:20 ----D---- C:\windows\Tasks
2016-11-04 05:14:34 ----D---- C:\windows\AUInstallAgent
2016-11-04 05:14:13 ----HD---- C:\Program Files\WindowsApps
2016-11-01 14:41:21 ----D---- C:\Program Files (x86)\Common Files
2016-11-01 14:40:56 ----RSD---- C:\windows\Fonts
2016-10-28 02:22:26 ----N---- C:\windows\system32\MpSigStub.exe
2016-10-25 12:22:12 ----D---- C:\windows\system32\NDF
2016-10-23 21:57:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-23 13:43:00 ----RD---- C:\Program Files (x86)
2016-10-14 15:01:49 ----D---- C:\Users\Martina\AppData\Roaming\Atheros
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2013-02-08 39008]
R0 RapportHades64;RapportHades64; C:\windows\System32\Drivers\RapportHades64.sys [2016-10-06 235184]
R0 RapportKE64;RapportKE64; C:\windows\System32\Drivers\RapportKE64.sys [2016-10-06 489712]
R1 dtsoftbus01;@oem30.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\windows\System32\drivers\dtsoftbus01.sys [2014-01-24 283064]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2016-04-14 264552]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2016-04-14 186784]
R1 RapportCerberus_1609053;RapportCerberus_1609053; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1609053.sys [2016-09-16 1181672]
R1 RapportEI64;RapportEI64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2016-10-06 566248]
R1 RapportPG64;RapportPG64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2016-10-06 547888]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2016-05-16 88480]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2016-04-14 170792]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2016-05-16 46400]
R3 ACPIVPC;@oem18.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2013-02-08 33560]
R3 AthBTPort;@oem17.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-09-30 88728]
R3 athr;@oem11.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athw8x.sys [2012-09-19 3653632]
R3 BTATH_A2DP;@oem16.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-09-30 344216]
R3 btath_avdt;@oem16.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-09-30 114840]
R3 BTATH_BUS;@oem13.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\windows\System32\drivers\btath_bus.sys [2012-09-30 33944]
R3 BTATH_HCRP;@oem19.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\windows\System32\drivers\btath_hcrp.sys [2012-09-30 178840]
R3 BTATH_LWFLT;@oem20.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-09-30 76952]
R3 BTATH_RCP;@oem22.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\windows\System32\drivers\btath_rcp.sys [2012-09-30 135832]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-09-30 575128]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 CnxtHdAudService;@oem6.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2012-06-27 1608864]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;@oem8.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-27 43832]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\System32\drivers\serscan.sys [2012-10-11 12288]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2012-08-27 448312]
R3 vm331avs;@oem12.inf,%USBCamera.DeviceDesc2%;Digital Camera 1; C:\windows\System32\Drivers\vm331avs.sys [2012-08-24 975104]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 dbx;dbx; C:\windows\system32\DRIVERS\dbx.sys []
S3 dg_ssudbus;@oem40.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\System32\Drivers\GEARAspiWDM.sys []
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 RSUSBVSTOR;@oem7.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
S3 ssudmdm;@oem41.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\windows\System32\drivers\usbscan.sys [2013-07-01 43008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-09-30 220288]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DbxSvc;DbxSvc; C:\windows\system32\DbxSvc.exe [2016-11-07 42096]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-03-03 2520928]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-05-27 2960672]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 RapportMgmtService;Rapport Management Service; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2016-10-06 2387952]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 107848]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2016-11-07 2209296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08 270016]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2012-08-08 276288]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-09-29 1738808]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-09-29 6951992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 107848]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-10-23 172488]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-11-07 2142728]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S4 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-29 194032]
-----------------EOF-----------------
Run by Martina at 2016-11-13 18:28:35
Microsoft Windows 8
System drive C: has 2 GB (1%) free of 428 GB
Total RAM: 3962 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:28:47, on 13. 11. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe
C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe
C:\Program Files\trend micro\Martina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8013
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510P405PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\windows\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 11384 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe"
"dwm.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\CxAudMsg64.exe
C:\windows\system32\DbxSvc.exe
dashost.exe {9b5c9cb3-89ff-4825-86823884b0b1c45c}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe" -servicelaunch=true
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510P405PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
"C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe" BitTorrent_3648_0235C540_262193214 BT4823DF041B09 BitTorrent
"C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe" BitTorrent_3648_0235C838_787828690 BT4823DF041B09 BitTorrent
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Defender\MsMpEng.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="4704.0.1266201782\2039551629" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 4704 "\\.\pipe\gecko-crash-server-pipe.4704" tab
taskhost.exe
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.8_42577\utorrentie.exe" BitTorrent_3648_00A91E38_404633138 BT4823DF041B09 BitTorrent
explorer.exe
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe15_ Global\UsGthrCtrlFltPipeMssGthrPipe15 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 552 560 568 65536 564
"C:\Users\Martina\Downloads\RSITx64(1).exe"
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\Uninstaller_SkipUac_Martina.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
=========Mozilla firefox=========
ProfilePath - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\lisxg3qz.default-1478951034493
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
nppluginrichmediaplayer.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-12-23 2478880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-08 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-08 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-08 440640]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-15 887968]
"BtPreLoad"=C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [2012-09-30 64640]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-02-08 17079376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-02-08 191568]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HP Deskjet 3050A J611 series (NET)"=C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2012-10-17 2573416]
"BitTorrent"=C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [2016-09-08 2142920]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-07-26 508656]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2012-05-02 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"Philips Device Listener"=C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [2012-02-15 380416]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-11-07 25673776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"DisableCAD"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-11-13 17:29:13 ----D---- C:\windows\LastGood
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-stable.sys
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-dev.sys
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-canary.sys
2016-11-07 23:49:04 ----A---- C:\windows\system32\DbxSvc.exe
2016-11-07 02:05:46 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-11-07 02:05:46 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-11-07 02:05:46 ----A---- C:\windows\system32\XAudio2_7.dll
2016-11-07 02:05:46 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-11-07 02:05:44 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-11-07 02:05:44 ----A---- C:\windows\system32\xactengine3_7.dll
2016-11-07 02:05:41 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-11-07 02:05:41 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-11-07 02:05:40 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-11-07 02:05:40 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-11-07 02:05:38 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-11-07 02:05:38 ----A---- C:\windows\system32\d3dx11_43.dll
2016-11-07 02:05:36 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-11-07 02:05:36 ----A---- C:\windows\system32\d3dx10_43.dll
2016-11-07 02:05:34 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-11-07 02:05:34 ----A---- C:\windows\system32\D3DX9_43.dll
2016-11-07 02:05:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-11-07 02:05:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-11-07 02:05:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-11-07 02:05:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-11-07 02:05:29 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-11-07 02:05:29 ----A---- C:\windows\system32\xactengine3_6.dll
2016-11-07 02:05:27 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-11-07 02:05:27 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-11-07 02:05:23 ----A---- C:\windows\SYSWOW64\XAudio2_5.dll
2016-11-07 02:05:23 ----A---- C:\windows\system32\XAudio2_5.dll
2016-11-07 02:05:14 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-11-07 02:05:14 ----A---- C:\windows\system32\xactengine3_5.dll
2016-11-07 02:05:07 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-11-07 02:05:07 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-11-07 02:04:59 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-11-07 02:04:59 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-11-07 02:04:56 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-11-07 02:04:56 ----A---- C:\windows\system32\d3dx11_42.dll
2016-11-07 02:04:52 ----A---- C:\windows\SYSWOW64\d3dx10_42.dll
2016-11-07 02:04:52 ----A---- C:\windows\system32\d3dx10_42.dll
2016-11-07 02:04:41 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-11-07 02:04:41 ----A---- C:\windows\system32\D3DX9_42.dll
2016-11-07 02:04:36 ----A---- C:\windows\SYSWOW64\d3dx10_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\SYSWOW64\D3DCompiler_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\system32\d3dx10_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-11-07 02:04:31 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-11-07 02:04:31 ----A---- C:\windows\system32\D3DX9_41.dll
2016-11-07 02:04:26 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-11-07 02:04:26 ----A---- C:\windows\SYSWOW64\XAPOFX1_3.dll
2016-11-07 02:04:26 ----A---- C:\windows\system32\XAudio2_4.dll
2016-11-07 02:04:26 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-11-07 02:04:15 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-11-07 02:04:15 ----A---- C:\windows\system32\xactengine3_4.dll
2016-11-07 02:04:10 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-11-07 02:04:10 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-11-07 02:04:00 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\system32\d3dx10_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-11-07 02:03:54 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-11-07 02:03:54 ----A---- C:\windows\system32\D3DX9_40.dll
2016-11-07 02:03:50 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-11-07 02:03:50 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-11-07 02:03:50 ----A---- C:\windows\system32\XAudio2_3.dll
2016-11-07 02:03:50 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-11-07 02:03:48 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-11-07 02:03:48 ----A---- C:\windows\system32\xactengine3_3.dll
2016-11-07 02:03:46 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-11-07 02:03:46 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-11-07 02:03:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-11-07 02:03:42 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-11-07 02:03:41 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-11-07 02:03:41 ----A---- C:\windows\system32\XAudio2_2.dll
2016-11-07 02:03:39 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-11-07 02:03:39 ----A---- C:\windows\system32\xactengine3_2.dll
2016-11-07 02:03:34 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\system32\d3dx10_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-11-07 02:03:28 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-11-07 02:03:28 ----A---- C:\windows\system32\D3DX9_39.dll
2016-11-07 02:03:19 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-11-07 02:03:19 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-11-07 02:03:19 ----A---- C:\windows\system32\XAudio2_1.dll
2016-11-07 02:03:19 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-11-07 02:03:14 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-11-07 02:03:14 ----A---- C:\windows\system32\xactengine3_1.dll
2016-11-07 02:03:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-11-07 02:03:08 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-11-07 02:03:03 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\system32\d3dx10_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-11-07 02:02:59 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-11-07 02:02:59 ----A---- C:\windows\system32\D3DX9_38.dll
2016-11-07 02:02:52 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-11-07 02:02:52 ----A---- C:\windows\system32\XAudio2_0.dll
2016-11-07 02:02:47 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-11-07 02:02:47 ----A---- C:\windows\system32\xactengine3_0.dll
2016-11-07 02:02:39 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-11-07 02:02:39 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-11-07 02:02:26 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\system32\d3dx10_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-11-07 02:02:13 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-11-07 02:02:13 ----A---- C:\windows\system32\D3DX9_37.dll
2016-11-07 02:01:55 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-11-07 02:01:55 ----A---- C:\windows\system32\xactengine2_10.dll
2016-11-07 02:01:38 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\system32\d3dx10_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-11-07 02:01:28 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-11-07 02:01:28 ----A---- C:\windows\system32\d3dx9_36.dll
2016-11-07 02:01:24 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-11-07 02:01:24 ----A---- C:\windows\system32\xactengine2_9.dll
2016-11-07 02:01:16 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-11-07 02:01:16 ----A---- C:\windows\system32\d3dx10_35.dll
2016-11-07 02:01:15 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-11-07 02:01:15 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-11-07 02:01:06 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-11-07 02:01:06 ----A---- C:\windows\system32\d3dx9_35.dll
2016-11-07 02:01:03 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-11-07 02:01:03 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-11-07 02:01:03 ----A---- C:\windows\system32\xactengine2_8.dll
2016-11-07 02:01:03 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-11-07 02:00:59 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\system32\d3dx10_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-11-07 02:00:55 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-11-07 02:00:55 ----A---- C:\windows\system32\d3dx9_34.dll
2016-11-07 02:00:52 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-11-07 02:00:52 ----A---- C:\windows\system32\xinput1_3.dll
2016-11-07 02:00:45 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-11-07 02:00:45 ----A---- C:\windows\system32\xactengine2_7.dll
2016-11-07 02:00:38 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\system32\d3dx10_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-11-07 02:00:34 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-11-07 02:00:34 ----A---- C:\windows\system32\d3dx9_33.dll
2016-11-07 02:00:30 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-11-07 02:00:30 ----A---- C:\windows\system32\xactengine2_6.dll
2016-11-07 02:00:26 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-11-07 02:00:26 ----A---- C:\windows\system32\xactengine2_5.dll
2016-11-07 02:00:22 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-11-07 02:00:22 ----A---- C:\windows\system32\d3dx10.dll
2016-11-07 02:00:13 ----A---- C:\windows\SYSWOW64\d3dx9_32.dll
2016-11-07 02:00:13 ----A---- C:\windows\system32\d3dx9_32.dll
2016-11-07 02:00:02 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-11-07 02:00:02 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-11-07 02:00:02 ----A---- C:\windows\system32\xactengine2_4.dll
2016-11-07 02:00:02 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-11-07 01:59:55 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-11-07 01:59:55 ----A---- C:\windows\system32\d3dx9_31.dll
2016-11-07 01:59:52 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-11-07 01:59:52 ----A---- C:\windows\system32\xactengine2_3.dll
2016-11-07 01:59:50 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-11-07 01:59:50 ----A---- C:\windows\system32\xinput1_2.dll
2016-11-07 01:59:45 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-11-07 01:59:45 ----A---- C:\windows\system32\xactengine2_2.dll
2016-11-07 01:59:42 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-11-07 01:59:42 ----A---- C:\windows\system32\xinput1_1.dll
2016-11-07 01:59:40 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-11-07 01:59:40 ----A---- C:\windows\system32\xactengine2_1.dll
2016-11-07 01:58:59 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-11-07 01:58:59 ----A---- C:\windows\system32\d3dx9_30.dll
2016-11-07 01:58:54 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\system32\xactengine2_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-11-07 01:58:52 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-11-07 01:58:52 ----A---- C:\windows\system32\d3dx9_29.dll
2016-11-07 01:58:44 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-11-07 01:58:44 ----A---- C:\windows\system32\d3dx9_28.dll
2016-11-07 01:58:39 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-11-07 01:58:39 ----A---- C:\windows\system32\d3dx9_27.dll
2016-11-07 01:58:35 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-11-07 01:58:35 ----A---- C:\windows\system32\d3dx9_26.dll
2016-11-07 01:58:28 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-11-07 01:58:28 ----A---- C:\windows\system32\d3dx9_25.dll
2016-11-07 01:58:23 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-11-07 01:58:23 ----A---- C:\windows\system32\d3dx9_24.dll
2016-11-01 13:45:27 ----D---- C:\Hry
2016-10-23 11:45:51 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-11-13 18:28:42 ----D---- C:\Program Files\trend micro
2016-11-13 18:28:40 ----D---- C:\Users\Martina\AppData\Roaming\BitTorrent
2016-11-13 18:28:17 ----D---- C:\windows\Temp
2016-11-13 18:02:05 ----D---- C:\windows\system32\sru
2016-11-13 17:35:50 ----D---- C:\windows\system32\Drivers
2016-11-13 17:35:49 ----D---- C:\windows\Inf
2016-11-13 17:35:48 ----D---- C:\windows\system32\DriverStore
2016-11-13 17:30:24 ----D---- C:\windows\Prefetch
2016-11-13 17:29:13 ----AD---- C:\Windows
2016-11-13 16:41:51 ----AD---- C:\windows\System32
2016-11-13 16:41:51 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-11-12 17:06:43 ----A---- C:\windows\SYSWOW64\log.txt
2016-11-12 17:01:57 ----D---- C:\AdwCleaner
2016-11-12 16:08:31 ----D---- C:\windows\Microsoft.NET
2016-11-12 14:28:33 ----D---- C:\windows\Minidump
2016-11-10 22:09:45 ----D---- C:\Program Files (x86)\Dropbox
2016-11-10 14:15:45 ----D---- C:\FRST
2016-11-10 01:06:38 ----SHD---- C:\windows\Installer
2016-11-08 23:38:45 ----D---- C:\windows\system32\Tasks
2016-11-08 23:37:31 ----D---- C:\windows\SysWOW64
2016-11-08 23:36:54 ----D---- C:\windows\system32\Macromed
2016-11-08 23:36:41 ----D---- C:\windows\SYSWOW64\Macromed
2016-11-07 12:44:23 ----D---- C:\ProgramData\Origin
2016-11-07 12:43:48 ----D---- C:\Users\Martina\AppData\Roaming\Origin
2016-11-07 12:43:33 ----D---- C:\Program Files (x86)\Origin
2016-11-07 12:42:45 ----SHD---- C:\System Volume Information
2016-11-07 03:09:01 ----D---- C:\Program Files (x86)\Electronic Arts
2016-11-07 01:59:39 ----RSD---- C:\windows\assembly
2016-11-07 01:55:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-11-06 20:00:57 ----D---- C:\ProgramData\ProductData
2016-11-05 12:59:20 ----D---- C:\windows\Tasks
2016-11-04 05:14:34 ----D---- C:\windows\AUInstallAgent
2016-11-04 05:14:13 ----HD---- C:\Program Files\WindowsApps
2016-11-01 14:41:21 ----D---- C:\Program Files (x86)\Common Files
2016-11-01 14:40:56 ----RSD---- C:\windows\Fonts
2016-10-28 02:22:26 ----N---- C:\windows\system32\MpSigStub.exe
2016-10-25 12:22:12 ----D---- C:\windows\system32\NDF
2016-10-23 21:57:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-23 13:43:00 ----RD---- C:\Program Files (x86)
2016-10-14 15:01:49 ----D---- C:\Users\Martina\AppData\Roaming\Atheros
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2013-02-08 39008]
R0 RapportHades64;RapportHades64; C:\windows\System32\Drivers\RapportHades64.sys [2016-10-06 235184]
R0 RapportKE64;RapportKE64; C:\windows\System32\Drivers\RapportKE64.sys [2016-10-06 489712]
R1 dtsoftbus01;@oem30.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\windows\System32\drivers\dtsoftbus01.sys [2014-01-24 283064]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2016-04-14 264552]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2016-04-14 186784]
R1 RapportCerberus_1609053;RapportCerberus_1609053; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1609053.sys [2016-09-16 1181672]
R1 RapportEI64;RapportEI64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2016-10-06 566248]
R1 RapportPG64;RapportPG64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2016-10-06 547888]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2016-05-16 88480]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2016-04-14 170792]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2016-05-16 46400]
R3 ACPIVPC;@oem18.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2013-02-08 33560]
R3 AthBTPort;@oem17.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-09-30 88728]
R3 athr;@oem11.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athw8x.sys [2012-09-19 3653632]
R3 BTATH_A2DP;@oem16.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-09-30 344216]
R3 btath_avdt;@oem16.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-09-30 114840]
R3 BTATH_BUS;@oem13.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\windows\System32\drivers\btath_bus.sys [2012-09-30 33944]
R3 BTATH_HCRP;@oem19.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\windows\System32\drivers\btath_hcrp.sys [2012-09-30 178840]
R3 BTATH_LWFLT;@oem20.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-09-30 76952]
R3 BTATH_RCP;@oem22.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\windows\System32\drivers\btath_rcp.sys [2012-09-30 135832]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-09-30 575128]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 CnxtHdAudService;@oem6.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2012-06-27 1608864]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;@oem8.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-27 43832]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\System32\drivers\serscan.sys [2012-10-11 12288]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2012-08-27 448312]
R3 vm331avs;@oem12.inf,%USBCamera.DeviceDesc2%;Digital Camera 1; C:\windows\System32\Drivers\vm331avs.sys [2012-08-24 975104]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 dbx;dbx; C:\windows\system32\DRIVERS\dbx.sys []
S3 dg_ssudbus;@oem40.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\System32\Drivers\GEARAspiWDM.sys []
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 RSUSBVSTOR;@oem7.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
S3 ssudmdm;@oem41.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\windows\System32\drivers\usbscan.sys [2013-07-01 43008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-09-30 220288]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DbxSvc;DbxSvc; C:\windows\system32\DbxSvc.exe [2016-11-07 42096]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-03-03 2520928]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-05-27 2960672]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 RapportMgmtService;Rapport Management Service; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2016-10-06 2387952]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 107848]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2016-11-07 2209296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08 270016]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2012-08-08 276288]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-09-29 1738808]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-09-29 6951992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 107848]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-10-23 172488]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-11-07 2142728]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S4 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-29 194032]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zasekaný pc
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zasekaný pc
Logfile of random's system information tool 1.10 (written by random/random)
Run by Martina at 2016-11-21 17:56:13
Microsoft Windows 8
System drive C: has 2 GB (0%) free of 428 GB
Total RAM: 3962 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:56:19, on 21. 11. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.9_42924\utorrentie.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.9_42924\utorrentie.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\windows\syswow64\backgroundTaskHost.exe
C:\Program Files\trend micro\Martina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8013
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510P405PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\windows\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 11339 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe"
"dwm.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\CxAudMsg64.exe
C:\windows\system32\DbxSvc.exe
dashost.exe {f3696f0f-0e75-4fe6-be78264c9a14935b}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ea3a4bc2-6852-45da-b81b-b98b5f43d51b -SystemEventPortName:HostProcess-59acb255-f50e-4971-9ac9-b9a2c7fe42b6 -IoCancelEventPortName:HostProcess-3af69664-d65e-41c2-a011-cec82b00f017 -NonStateChangingEventPortName:HostProcess-1f2baff0-96d6-4a1f-8559-25d9a18b3c40 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:35647153-330c-4806-83d7-b89371abf6cf -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Defender\MsMpEng.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\wbem\wmiprvse.exe
taskeng.exe {9B1D4C0D-AEB5-4B28-93DE-1EEB3F1BA830}
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe" -servicelaunch=true
"C:\windows\notepad.exe" C:\_OTM\MovedFiles\11212016_174414.log
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510P405PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
C:\windows\System32\svchost.exe -k swprv
"C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.9_42924\utorrentie.exe" BitTorrent_1412_02290CE8_2060766681 BT4823DF041B09 BitTorrent
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.9_42924\utorrentie.exe" BitTorrent_1412_022906F8_1282859169 BT4823DF041B09 BitTorrent
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
C:\windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5092.0.739830268\1645741059" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5092 "\\.\pipe\gecko-crash-server-pipe.5092" tab
"C:\windows\system32\wuauclt.exe"
"C:\windows\syswow64\backgroundTaskHost.exe" -ServerName:App.AppXeswb5ba1hz6dgh65e6kd4vazsqwqzdcn.mca
"C:\Users\Martina\Downloads\RSITx64(1).exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\windows\tasks\Uninstaller_SkipUac_Martina.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
=========Mozilla firefox=========
ProfilePath - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\lisxg3qz.default-1478951034493
prefs.js - "browser.startup.homepage" - "https://www.pesweb.cz/cz/naplnte-misky"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
nppluginrichmediaplayer.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-12-23 2478880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-08 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-08 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-08 440640]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-15 887968]
"BtPreLoad"=C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [2012-09-30 64640]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-02-08 17079376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-02-08 191568]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HP Deskjet 3050A J611 series (NET)"=C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2012-10-17 2573416]
"BitTorrent"=C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [2016-11-21 2149064]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-07-26 508656]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2012-05-02 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"Philips Device Listener"=C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [2012-02-15 380416]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-11-07 25673776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"DisableCAD"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-11-21 17:44:14 ----D---- C:\_OTM
2016-11-21 12:35:47 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-11-13 17:29:13 ----D---- C:\windows\LastGood.Tmp
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-stable.sys
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-dev.sys
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-canary.sys
2016-11-07 23:49:04 ----A---- C:\windows\system32\DbxSvc.exe
2016-11-07 02:05:46 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-11-07 02:05:46 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-11-07 02:05:46 ----A---- C:\windows\system32\XAudio2_7.dll
2016-11-07 02:05:46 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-11-07 02:05:44 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-11-07 02:05:44 ----A---- C:\windows\system32\xactengine3_7.dll
2016-11-07 02:05:41 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-11-07 02:05:41 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-11-07 02:05:40 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-11-07 02:05:40 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-11-07 02:05:38 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-11-07 02:05:38 ----A---- C:\windows\system32\d3dx11_43.dll
2016-11-07 02:05:36 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-11-07 02:05:36 ----A---- C:\windows\system32\d3dx10_43.dll
2016-11-07 02:05:34 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-11-07 02:05:34 ----A---- C:\windows\system32\D3DX9_43.dll
2016-11-07 02:05:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-11-07 02:05:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-11-07 02:05:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-11-07 02:05:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-11-07 02:05:29 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-11-07 02:05:29 ----A---- C:\windows\system32\xactengine3_6.dll
2016-11-07 02:05:27 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-11-07 02:05:27 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-11-07 02:05:23 ----A---- C:\windows\SYSWOW64\XAudio2_5.dll
2016-11-07 02:05:23 ----A---- C:\windows\system32\XAudio2_5.dll
2016-11-07 02:05:14 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-11-07 02:05:14 ----A---- C:\windows\system32\xactengine3_5.dll
2016-11-07 02:05:07 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-11-07 02:05:07 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-11-07 02:04:59 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-11-07 02:04:59 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-11-07 02:04:56 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-11-07 02:04:56 ----A---- C:\windows\system32\d3dx11_42.dll
2016-11-07 02:04:52 ----A---- C:\windows\SYSWOW64\d3dx10_42.dll
2016-11-07 02:04:52 ----A---- C:\windows\system32\d3dx10_42.dll
2016-11-07 02:04:41 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-11-07 02:04:41 ----A---- C:\windows\system32\D3DX9_42.dll
2016-11-07 02:04:36 ----A---- C:\windows\SYSWOW64\d3dx10_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\SYSWOW64\D3DCompiler_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\system32\d3dx10_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-11-07 02:04:31 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-11-07 02:04:31 ----A---- C:\windows\system32\D3DX9_41.dll
2016-11-07 02:04:26 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-11-07 02:04:26 ----A---- C:\windows\SYSWOW64\XAPOFX1_3.dll
2016-11-07 02:04:26 ----A---- C:\windows\system32\XAudio2_4.dll
2016-11-07 02:04:26 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-11-07 02:04:15 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-11-07 02:04:15 ----A---- C:\windows\system32\xactengine3_4.dll
2016-11-07 02:04:10 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-11-07 02:04:10 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-11-07 02:04:00 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\system32\d3dx10_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-11-07 02:03:54 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-11-07 02:03:54 ----A---- C:\windows\system32\D3DX9_40.dll
2016-11-07 02:03:50 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-11-07 02:03:50 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-11-07 02:03:50 ----A---- C:\windows\system32\XAudio2_3.dll
2016-11-07 02:03:50 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-11-07 02:03:48 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-11-07 02:03:48 ----A---- C:\windows\system32\xactengine3_3.dll
2016-11-07 02:03:46 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-11-07 02:03:46 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-11-07 02:03:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-11-07 02:03:42 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-11-07 02:03:41 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-11-07 02:03:41 ----A---- C:\windows\system32\XAudio2_2.dll
2016-11-07 02:03:39 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-11-07 02:03:39 ----A---- C:\windows\system32\xactengine3_2.dll
2016-11-07 02:03:34 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\system32\d3dx10_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-11-07 02:03:28 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-11-07 02:03:28 ----A---- C:\windows\system32\D3DX9_39.dll
2016-11-07 02:03:19 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-11-07 02:03:19 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-11-07 02:03:19 ----A---- C:\windows\system32\XAudio2_1.dll
2016-11-07 02:03:19 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-11-07 02:03:14 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-11-07 02:03:14 ----A---- C:\windows\system32\xactengine3_1.dll
2016-11-07 02:03:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-11-07 02:03:08 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-11-07 02:03:03 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\system32\d3dx10_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-11-07 02:02:59 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-11-07 02:02:59 ----A---- C:\windows\system32\D3DX9_38.dll
2016-11-07 02:02:52 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-11-07 02:02:52 ----A---- C:\windows\system32\XAudio2_0.dll
2016-11-07 02:02:47 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-11-07 02:02:47 ----A---- C:\windows\system32\xactengine3_0.dll
2016-11-07 02:02:39 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-11-07 02:02:39 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-11-07 02:02:26 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\system32\d3dx10_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-11-07 02:02:13 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-11-07 02:02:13 ----A---- C:\windows\system32\D3DX9_37.dll
2016-11-07 02:01:55 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-11-07 02:01:55 ----A---- C:\windows\system32\xactengine2_10.dll
2016-11-07 02:01:38 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\system32\d3dx10_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-11-07 02:01:28 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-11-07 02:01:28 ----A---- C:\windows\system32\d3dx9_36.dll
2016-11-07 02:01:24 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-11-07 02:01:24 ----A---- C:\windows\system32\xactengine2_9.dll
2016-11-07 02:01:16 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-11-07 02:01:16 ----A---- C:\windows\system32\d3dx10_35.dll
2016-11-07 02:01:15 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-11-07 02:01:15 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-11-07 02:01:06 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-11-07 02:01:06 ----A---- C:\windows\system32\d3dx9_35.dll
2016-11-07 02:01:03 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-11-07 02:01:03 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-11-07 02:01:03 ----A---- C:\windows\system32\xactengine2_8.dll
2016-11-07 02:01:03 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-11-07 02:00:59 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\system32\d3dx10_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-11-07 02:00:55 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-11-07 02:00:55 ----A---- C:\windows\system32\d3dx9_34.dll
2016-11-07 02:00:52 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-11-07 02:00:52 ----A---- C:\windows\system32\xinput1_3.dll
2016-11-07 02:00:45 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-11-07 02:00:45 ----A---- C:\windows\system32\xactengine2_7.dll
2016-11-07 02:00:38 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\system32\d3dx10_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-11-07 02:00:34 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-11-07 02:00:34 ----A---- C:\windows\system32\d3dx9_33.dll
2016-11-07 02:00:30 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-11-07 02:00:30 ----A---- C:\windows\system32\xactengine2_6.dll
2016-11-07 02:00:26 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-11-07 02:00:26 ----A---- C:\windows\system32\xactengine2_5.dll
2016-11-07 02:00:22 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-11-07 02:00:22 ----A---- C:\windows\system32\d3dx10.dll
2016-11-07 02:00:13 ----A---- C:\windows\SYSWOW64\d3dx9_32.dll
2016-11-07 02:00:13 ----A---- C:\windows\system32\d3dx9_32.dll
2016-11-07 02:00:02 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-11-07 02:00:02 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-11-07 02:00:02 ----A---- C:\windows\system32\xactengine2_4.dll
2016-11-07 02:00:02 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-11-07 01:59:55 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-11-07 01:59:55 ----A---- C:\windows\system32\d3dx9_31.dll
2016-11-07 01:59:52 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-11-07 01:59:52 ----A---- C:\windows\system32\xactengine2_3.dll
2016-11-07 01:59:50 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-11-07 01:59:50 ----A---- C:\windows\system32\xinput1_2.dll
2016-11-07 01:59:45 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-11-07 01:59:45 ----A---- C:\windows\system32\xactengine2_2.dll
2016-11-07 01:59:42 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-11-07 01:59:42 ----A---- C:\windows\system32\xinput1_1.dll
2016-11-07 01:59:40 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-11-07 01:59:40 ----A---- C:\windows\system32\xactengine2_1.dll
2016-11-07 01:58:59 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-11-07 01:58:59 ----A---- C:\windows\system32\d3dx9_30.dll
2016-11-07 01:58:54 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\system32\xactengine2_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-11-07 01:58:52 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-11-07 01:58:52 ----A---- C:\windows\system32\d3dx9_29.dll
2016-11-07 01:58:44 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-11-07 01:58:44 ----A---- C:\windows\system32\d3dx9_28.dll
2016-11-07 01:58:39 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-11-07 01:58:39 ----A---- C:\windows\system32\d3dx9_27.dll
2016-11-07 01:58:35 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-11-07 01:58:35 ----A---- C:\windows\system32\d3dx9_26.dll
2016-11-07 01:58:28 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-11-07 01:58:28 ----A---- C:\windows\system32\d3dx9_25.dll
2016-11-07 01:58:23 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-11-07 01:58:23 ----A---- C:\windows\system32\d3dx9_24.dll
2016-11-01 13:45:27 ----D---- C:\Hry
======List of files/folders modified in the last 1 month======
2016-11-21 17:56:17 ----D---- C:\Program Files\trend micro
2016-11-21 17:54:23 ----D---- C:\windows\Prefetch
2016-11-21 17:53:48 ----D---- C:\windows\Temp
2016-11-21 17:53:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-21 17:53:30 ----RD---- C:\Program Files (x86)
2016-11-21 17:52:55 ----D---- C:\Users\Martina\AppData\Roaming\BitTorrent
2016-11-21 17:50:52 ----A---- C:\windows\SYSWOW64\log.txt
2016-11-21 17:47:31 ----AD---- C:\Windows
2016-11-21 17:44:20 ----D---- C:\windows\Tasks
2016-11-21 17:00:02 ----D---- C:\windows\system32\sru
2016-11-21 13:05:55 ----SHD---- C:\System Volume Information
2016-11-21 12:10:02 ----D---- C:\windows\Microsoft.NET
2016-11-21 11:32:44 ----HD---- C:\Program Files\WindowsApps
2016-11-21 11:32:39 ----D---- C:\windows\AUInstallAgent
2016-11-17 00:20:33 ----D---- C:\ProgramData\ProductData
2016-11-13 17:35:50 ----D---- C:\windows\system32\Drivers
2016-11-13 17:35:49 ----D---- C:\windows\Inf
2016-11-13 17:35:48 ----D---- C:\windows\system32\DriverStore
2016-11-13 16:41:51 ----AD---- C:\windows\System32
2016-11-13 16:41:51 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-11-12 17:01:57 ----D---- C:\AdwCleaner
2016-11-12 14:28:33 ----D---- C:\windows\Minidump
2016-11-10 22:09:45 ----D---- C:\Program Files (x86)\Dropbox
2016-11-10 14:15:45 ----D---- C:\FRST
2016-11-10 01:06:38 ----SHD---- C:\windows\Installer
2016-11-08 23:38:45 ----D---- C:\windows\system32\Tasks
2016-11-08 23:37:31 ----D---- C:\windows\SysWOW64
2016-11-08 23:36:54 ----D---- C:\windows\system32\Macromed
2016-11-08 23:36:41 ----D---- C:\windows\SYSWOW64\Macromed
2016-11-07 12:44:23 ----D---- C:\ProgramData\Origin
2016-11-07 12:43:48 ----D---- C:\Users\Martina\AppData\Roaming\Origin
2016-11-07 12:43:33 ----D---- C:\Program Files (x86)\Origin
2016-11-07 03:09:01 ----D---- C:\Program Files (x86)\Electronic Arts
2016-11-07 01:59:39 ----RSD---- C:\windows\assembly
2016-11-07 01:55:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-11-01 14:41:21 ----D---- C:\Program Files (x86)\Common Files
2016-11-01 14:40:56 ----RSD---- C:\windows\Fonts
2016-10-28 02:22:26 ----N---- C:\windows\system32\MpSigStub.exe
2016-10-25 12:22:12 ----D---- C:\windows\system32\NDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2013-02-08 39008]
R0 RapportHades64;RapportHades64; C:\windows\System32\Drivers\RapportHades64.sys [2016-10-06 235184]
R0 RapportKE64;RapportKE64; C:\windows\System32\Drivers\RapportKE64.sys [2016-10-06 489712]
R1 dtsoftbus01;@oem30.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\windows\System32\drivers\dtsoftbus01.sys [2014-01-24 283064]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2016-04-14 264552]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2016-04-14 186784]
R1 RapportCerberus_1609053;RapportCerberus_1609053; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1609053.sys [2016-09-16 1181672]
R1 RapportEI64;RapportEI64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2016-10-06 566248]
R1 RapportPG64;RapportPG64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2016-10-06 547888]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2016-05-16 88480]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2016-04-14 170792]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2016-05-16 46400]
R3 ACPIVPC;@oem18.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2013-02-08 33560]
R3 AthBTPort;@oem17.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-09-30 88728]
R3 athr;@oem11.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athw8x.sys [2012-09-19 3653632]
R3 BTATH_A2DP;@oem16.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-09-30 344216]
R3 btath_avdt;@oem16.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-09-30 114840]
R3 BTATH_BUS;@oem13.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\windows\System32\drivers\btath_bus.sys [2012-09-30 33944]
R3 BTATH_HCRP;@oem19.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\windows\System32\drivers\btath_hcrp.sys [2012-09-30 178840]
R3 BTATH_LWFLT;@oem20.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-09-30 76952]
R3 BTATH_RCP;@oem22.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\windows\System32\drivers\btath_rcp.sys [2012-09-30 135832]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-09-30 575128]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 CnxtHdAudService;@oem6.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2012-06-27 1608864]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;@oem8.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-27 43832]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\System32\drivers\serscan.sys [2012-10-11 12288]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2012-08-27 448312]
R3 vm331avs;@oem12.inf,%USBCamera.DeviceDesc2%;Digital Camera 1; C:\windows\System32\Drivers\vm331avs.sys [2012-08-24 975104]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 dbx;dbx; C:\windows\system32\DRIVERS\dbx.sys []
S3 dg_ssudbus;@oem40.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\System32\Drivers\GEARAspiWDM.sys []
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 RSUSBVSTOR;@oem7.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
S3 ssudmdm;@oem41.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\windows\System32\drivers\usbscan.sys [2013-07-01 43008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-09-30 220288]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DbxSvc;DbxSvc; C:\windows\system32\DbxSvc.exe [2016-11-07 42096]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-03-03 2520928]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-05-27 2960672]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 RapportMgmtService;Rapport Management Service; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2016-10-06 2387952]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 107848]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2016-11-07 2209296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08 270016]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2012-08-08 276288]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-09-29 1738808]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-09-29 6951992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 107848]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-11-21 172488]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-11-07 2142728]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S4 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-29 194032]
-----------------EOF-----------------
Run by Martina at 2016-11-21 17:56:13
Microsoft Windows 8
System drive C: has 2 GB (0%) free of 428 GB
Total RAM: 3962 MB (48% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:56:19, on 21. 11. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.9_42924\utorrentie.exe
C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.9_42924\utorrentie.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\windows\syswow64\backgroundTaskHost.exe
C:\Program Files\trend micro\Martina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8013
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510P405PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [BitTorrent] "C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\windows\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - IBM Corp. - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 11339 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe"
"dwm.exe"
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\CxAudMsg64.exe
C:\windows\system32\DbxSvc.exe
dashost.exe {f3696f0f-0e75-4fe6-be78264c9a14935b}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ea3a4bc2-6852-45da-b81b-b98b5f43d51b -SystemEventPortName:HostProcess-59acb255-f50e-4971-9ac9-b9a2c7fe42b6 -IoCancelEventPortName:HostProcess-3af69664-d65e-41c2-a011-cec82b00f017 -NonStateChangingEventPortName:HostProcess-1f2baff0-96d6-4a1f-8559-25d9a18b3c40 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:35647153-330c-4806-83d7-b89371abf6cf -DeviceGroupId:WudfDefaultDevicePool
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Defender\MsMpEng.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\wbem\wmiprvse.exe
taskeng.exe {9B1D4C0D-AEB5-4B28-93DE-1EEB3F1BA830}
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe" -servicelaunch=true
"C:\windows\notepad.exe" C:\_OTM\MovedFiles\11212016_174414.log
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN23L510P405PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
C:\windows\System32\svchost.exe -k swprv
"C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.9_42924\utorrentie.exe" BitTorrent_1412_02290CE8_2060766681 BT4823DF041B09 BitTorrent
"C:\Users\Martina\AppData\Roaming\BitTorrent\updates\7.9.9_42924\utorrentie.exe" BitTorrent_1412_022906F8_1282859169 BT4823DF041B09 BitTorrent
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
C:\windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5092.0.739830268\1645741059" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5092 "\\.\pipe\gecko-crash-server-pipe.5092" tab
"C:\windows\system32\wuauclt.exe"
"C:\windows\syswow64\backgroundTaskHost.exe" -ServerName:App.AppXeswb5ba1hz6dgh65e6kd4vazsqwqzdcn.mca
"C:\Users\Martina\Downloads\RSITx64(1).exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572
C:\windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\windows\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\windows\tasks\Uninstaller_SkipUac_Martina.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
=========Mozilla firefox=========
ProfilePath - C:\Users\Martina\AppData\Roaming\Mozilla\Firefox\Profiles\lisxg3qz.default-1478951034493
prefs.js - "browser.startup.homepage" - "https://www.pesweb.cz/cz/naplnte-misky"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.7]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
C:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
nppluginrichmediaplayer.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-12-23 2478880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-26 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-26 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2012-08-08 170304]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2012-08-08 398656]
"Persistence"=C:\windows\system32\igfxpers.exe [2012-08-08 440640]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-15 887968]
"BtPreLoad"=C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [2012-09-30 64640]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-02-08 17079376]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-02-08 191568]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HP Deskjet 3050A J611 series (NET)"=C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2012-10-17 2573416]
"BitTorrent"=C:\Users\Martina\AppData\Roaming\BitTorrent\BitTorrent.exe [2016-11-21 2149064]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-07-26 508656]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2012-05-02 548864]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [2012-07-27 167024]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"Philips Device Listener"=C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [2012-02-15 380416]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-11-07 25673776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2012-08-03 439296]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"DisableCAD"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-11-21 17:44:14 ----D---- C:\_OTM
2016-11-21 12:35:47 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-11-13 17:29:13 ----D---- C:\windows\LastGood.Tmp
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-stable.sys
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-dev.sys
2016-11-07 23:49:08 ----A---- C:\windows\system32\drivers\dbx-canary.sys
2016-11-07 23:49:04 ----A---- C:\windows\system32\DbxSvc.exe
2016-11-07 02:05:46 ----A---- C:\windows\SYSWOW64\XAudio2_7.dll
2016-11-07 02:05:46 ----A---- C:\windows\SYSWOW64\XAPOFX1_5.dll
2016-11-07 02:05:46 ----A---- C:\windows\system32\XAudio2_7.dll
2016-11-07 02:05:46 ----A---- C:\windows\system32\XAPOFX1_5.dll
2016-11-07 02:05:44 ----A---- C:\windows\SYSWOW64\xactengine3_7.dll
2016-11-07 02:05:44 ----A---- C:\windows\system32\xactengine3_7.dll
2016-11-07 02:05:41 ----A---- C:\windows\SYSWOW64\D3DCompiler_43.dll
2016-11-07 02:05:41 ----A---- C:\windows\system32\D3DCompiler_43.dll
2016-11-07 02:05:40 ----A---- C:\windows\SYSWOW64\d3dcsx_43.dll
2016-11-07 02:05:40 ----A---- C:\windows\system32\d3dcsx_43.dll
2016-11-07 02:05:38 ----A---- C:\windows\SYSWOW64\d3dx11_43.dll
2016-11-07 02:05:38 ----A---- C:\windows\system32\d3dx11_43.dll
2016-11-07 02:05:36 ----A---- C:\windows\SYSWOW64\d3dx10_43.dll
2016-11-07 02:05:36 ----A---- C:\windows\system32\d3dx10_43.dll
2016-11-07 02:05:34 ----A---- C:\windows\SYSWOW64\D3DX9_43.dll
2016-11-07 02:05:34 ----A---- C:\windows\system32\D3DX9_43.dll
2016-11-07 02:05:31 ----A---- C:\windows\SYSWOW64\XAudio2_6.dll
2016-11-07 02:05:31 ----A---- C:\windows\SYSWOW64\XAPOFX1_4.dll
2016-11-07 02:05:31 ----A---- C:\windows\system32\XAudio2_6.dll
2016-11-07 02:05:31 ----A---- C:\windows\system32\XAPOFX1_4.dll
2016-11-07 02:05:29 ----A---- C:\windows\SYSWOW64\xactengine3_6.dll
2016-11-07 02:05:29 ----A---- C:\windows\system32\xactengine3_6.dll
2016-11-07 02:05:27 ----A---- C:\windows\SYSWOW64\X3DAudio1_7.dll
2016-11-07 02:05:27 ----A---- C:\windows\system32\X3DAudio1_7.dll
2016-11-07 02:05:23 ----A---- C:\windows\SYSWOW64\XAudio2_5.dll
2016-11-07 02:05:23 ----A---- C:\windows\system32\XAudio2_5.dll
2016-11-07 02:05:14 ----A---- C:\windows\SYSWOW64\xactengine3_5.dll
2016-11-07 02:05:14 ----A---- C:\windows\system32\xactengine3_5.dll
2016-11-07 02:05:07 ----A---- C:\windows\SYSWOW64\D3DCompiler_42.dll
2016-11-07 02:05:07 ----A---- C:\windows\system32\D3DCompiler_42.dll
2016-11-07 02:04:59 ----A---- C:\windows\SYSWOW64\d3dcsx_42.dll
2016-11-07 02:04:59 ----A---- C:\windows\system32\d3dcsx_42.dll
2016-11-07 02:04:56 ----A---- C:\windows\SYSWOW64\d3dx11_42.dll
2016-11-07 02:04:56 ----A---- C:\windows\system32\d3dx11_42.dll
2016-11-07 02:04:52 ----A---- C:\windows\SYSWOW64\d3dx10_42.dll
2016-11-07 02:04:52 ----A---- C:\windows\system32\d3dx10_42.dll
2016-11-07 02:04:41 ----A---- C:\windows\SYSWOW64\D3DX9_42.dll
2016-11-07 02:04:41 ----A---- C:\windows\system32\D3DX9_42.dll
2016-11-07 02:04:36 ----A---- C:\windows\SYSWOW64\d3dx10_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\SYSWOW64\D3DCompiler_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\system32\d3dx10_41.dll
2016-11-07 02:04:36 ----A---- C:\windows\system32\D3DCompiler_41.dll
2016-11-07 02:04:31 ----A---- C:\windows\SYSWOW64\D3DX9_41.dll
2016-11-07 02:04:31 ----A---- C:\windows\system32\D3DX9_41.dll
2016-11-07 02:04:26 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2016-11-07 02:04:26 ----A---- C:\windows\SYSWOW64\XAPOFX1_3.dll
2016-11-07 02:04:26 ----A---- C:\windows\system32\XAudio2_4.dll
2016-11-07 02:04:26 ----A---- C:\windows\system32\XAPOFX1_3.dll
2016-11-07 02:04:15 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2016-11-07 02:04:15 ----A---- C:\windows\system32\xactengine3_4.dll
2016-11-07 02:04:10 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2016-11-07 02:04:10 ----A---- C:\windows\system32\X3DAudio1_6.dll
2016-11-07 02:04:00 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\system32\d3dx10_40.dll
2016-11-07 02:04:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2016-11-07 02:03:54 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2016-11-07 02:03:54 ----A---- C:\windows\system32\D3DX9_40.dll
2016-11-07 02:03:50 ----A---- C:\windows\SYSWOW64\XAudio2_3.dll
2016-11-07 02:03:50 ----A---- C:\windows\SYSWOW64\XAPOFX1_2.dll
2016-11-07 02:03:50 ----A---- C:\windows\system32\XAudio2_3.dll
2016-11-07 02:03:50 ----A---- C:\windows\system32\XAPOFX1_2.dll
2016-11-07 02:03:48 ----A---- C:\windows\SYSWOW64\xactengine3_3.dll
2016-11-07 02:03:48 ----A---- C:\windows\system32\xactengine3_3.dll
2016-11-07 02:03:46 ----A---- C:\windows\SYSWOW64\X3DAudio1_5.dll
2016-11-07 02:03:46 ----A---- C:\windows\system32\X3DAudio1_5.dll
2016-11-07 02:03:42 ----A---- C:\windows\SYSWOW64\XAPOFX1_1.dll
2016-11-07 02:03:42 ----A---- C:\windows\system32\XAPOFX1_1.dll
2016-11-07 02:03:41 ----A---- C:\windows\SYSWOW64\XAudio2_2.dll
2016-11-07 02:03:41 ----A---- C:\windows\system32\XAudio2_2.dll
2016-11-07 02:03:39 ----A---- C:\windows\SYSWOW64\xactengine3_2.dll
2016-11-07 02:03:39 ----A---- C:\windows\system32\xactengine3_2.dll
2016-11-07 02:03:34 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\system32\d3dx10_39.dll
2016-11-07 02:03:34 ----A---- C:\windows\system32\D3DCompiler_39.dll
2016-11-07 02:03:28 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2016-11-07 02:03:28 ----A---- C:\windows\system32\D3DX9_39.dll
2016-11-07 02:03:19 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2016-11-07 02:03:19 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2016-11-07 02:03:19 ----A---- C:\windows\system32\XAudio2_1.dll
2016-11-07 02:03:19 ----A---- C:\windows\system32\XAPOFX1_0.dll
2016-11-07 02:03:14 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2016-11-07 02:03:14 ----A---- C:\windows\system32\xactengine3_1.dll
2016-11-07 02:03:08 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2016-11-07 02:03:08 ----A---- C:\windows\system32\X3DAudio1_4.dll
2016-11-07 02:03:03 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\system32\d3dx10_38.dll
2016-11-07 02:03:03 ----A---- C:\windows\system32\D3DCompiler_38.dll
2016-11-07 02:02:59 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2016-11-07 02:02:59 ----A---- C:\windows\system32\D3DX9_38.dll
2016-11-07 02:02:52 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2016-11-07 02:02:52 ----A---- C:\windows\system32\XAudio2_0.dll
2016-11-07 02:02:47 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2016-11-07 02:02:47 ----A---- C:\windows\system32\xactengine3_0.dll
2016-11-07 02:02:39 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2016-11-07 02:02:39 ----A---- C:\windows\system32\X3DAudio1_3.dll
2016-11-07 02:02:26 ----A---- C:\windows\SYSWOW64\d3dx10_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\system32\d3dx10_37.dll
2016-11-07 02:02:26 ----A---- C:\windows\system32\D3DCompiler_37.dll
2016-11-07 02:02:13 ----A---- C:\windows\SYSWOW64\D3DX9_37.dll
2016-11-07 02:02:13 ----A---- C:\windows\system32\D3DX9_37.dll
2016-11-07 02:01:55 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2016-11-07 02:01:55 ----A---- C:\windows\system32\xactengine2_10.dll
2016-11-07 02:01:38 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\system32\d3dx10_36.dll
2016-11-07 02:01:38 ----A---- C:\windows\system32\D3DCompiler_36.dll
2016-11-07 02:01:28 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2016-11-07 02:01:28 ----A---- C:\windows\system32\d3dx9_36.dll
2016-11-07 02:01:24 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2016-11-07 02:01:24 ----A---- C:\windows\system32\xactengine2_9.dll
2016-11-07 02:01:16 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2016-11-07 02:01:16 ----A---- C:\windows\system32\d3dx10_35.dll
2016-11-07 02:01:15 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2016-11-07 02:01:15 ----A---- C:\windows\system32\D3DCompiler_35.dll
2016-11-07 02:01:06 ----A---- C:\windows\SYSWOW64\d3dx9_35.dll
2016-11-07 02:01:06 ----A---- C:\windows\system32\d3dx9_35.dll
2016-11-07 02:01:03 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2016-11-07 02:01:03 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2016-11-07 02:01:03 ----A---- C:\windows\system32\xactengine2_8.dll
2016-11-07 02:01:03 ----A---- C:\windows\system32\X3DAudio1_2.dll
2016-11-07 02:00:59 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\system32\d3dx10_34.dll
2016-11-07 02:00:59 ----A---- C:\windows\system32\D3DCompiler_34.dll
2016-11-07 02:00:55 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2016-11-07 02:00:55 ----A---- C:\windows\system32\d3dx9_34.dll
2016-11-07 02:00:52 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2016-11-07 02:00:52 ----A---- C:\windows\system32\xinput1_3.dll
2016-11-07 02:00:45 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2016-11-07 02:00:45 ----A---- C:\windows\system32\xactengine2_7.dll
2016-11-07 02:00:38 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\system32\d3dx10_33.dll
2016-11-07 02:00:38 ----A---- C:\windows\system32\D3DCompiler_33.dll
2016-11-07 02:00:34 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2016-11-07 02:00:34 ----A---- C:\windows\system32\d3dx9_33.dll
2016-11-07 02:00:30 ----A---- C:\windows\SYSWOW64\xactengine2_6.dll
2016-11-07 02:00:30 ----A---- C:\windows\system32\xactengine2_6.dll
2016-11-07 02:00:26 ----A---- C:\windows\SYSWOW64\xactengine2_5.dll
2016-11-07 02:00:26 ----A---- C:\windows\system32\xactengine2_5.dll
2016-11-07 02:00:22 ----A---- C:\windows\SYSWOW64\d3dx10.dll
2016-11-07 02:00:22 ----A---- C:\windows\system32\d3dx10.dll
2016-11-07 02:00:13 ----A---- C:\windows\SYSWOW64\d3dx9_32.dll
2016-11-07 02:00:13 ----A---- C:\windows\system32\d3dx9_32.dll
2016-11-07 02:00:02 ----A---- C:\windows\SYSWOW64\xactengine2_4.dll
2016-11-07 02:00:02 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2016-11-07 02:00:02 ----A---- C:\windows\system32\xactengine2_4.dll
2016-11-07 02:00:02 ----A---- C:\windows\system32\x3daudio1_1.dll
2016-11-07 01:59:55 ----A---- C:\windows\SYSWOW64\d3dx9_31.dll
2016-11-07 01:59:55 ----A---- C:\windows\system32\d3dx9_31.dll
2016-11-07 01:59:52 ----A---- C:\windows\SYSWOW64\xactengine2_3.dll
2016-11-07 01:59:52 ----A---- C:\windows\system32\xactengine2_3.dll
2016-11-07 01:59:50 ----A---- C:\windows\SYSWOW64\xinput1_2.dll
2016-11-07 01:59:50 ----A---- C:\windows\system32\xinput1_2.dll
2016-11-07 01:59:45 ----A---- C:\windows\SYSWOW64\xactengine2_2.dll
2016-11-07 01:59:45 ----A---- C:\windows\system32\xactengine2_2.dll
2016-11-07 01:59:42 ----A---- C:\windows\SYSWOW64\xinput1_1.dll
2016-11-07 01:59:42 ----A---- C:\windows\system32\xinput1_1.dll
2016-11-07 01:59:40 ----A---- C:\windows\SYSWOW64\xactengine2_1.dll
2016-11-07 01:59:40 ----A---- C:\windows\system32\xactengine2_1.dll
2016-11-07 01:58:59 ----A---- C:\windows\SYSWOW64\d3dx9_30.dll
2016-11-07 01:58:59 ----A---- C:\windows\system32\d3dx9_30.dll
2016-11-07 01:58:54 ----A---- C:\windows\SYSWOW64\xactengine2_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\SYSWOW64\x3daudio1_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\system32\xactengine2_0.dll
2016-11-07 01:58:54 ----A---- C:\windows\system32\x3daudio1_0.dll
2016-11-07 01:58:52 ----A---- C:\windows\SYSWOW64\d3dx9_29.dll
2016-11-07 01:58:52 ----A---- C:\windows\system32\d3dx9_29.dll
2016-11-07 01:58:44 ----A---- C:\windows\SYSWOW64\d3dx9_28.dll
2016-11-07 01:58:44 ----A---- C:\windows\system32\d3dx9_28.dll
2016-11-07 01:58:39 ----A---- C:\windows\SYSWOW64\d3dx9_27.dll
2016-11-07 01:58:39 ----A---- C:\windows\system32\d3dx9_27.dll
2016-11-07 01:58:35 ----A---- C:\windows\SYSWOW64\d3dx9_26.dll
2016-11-07 01:58:35 ----A---- C:\windows\system32\d3dx9_26.dll
2016-11-07 01:58:28 ----A---- C:\windows\SYSWOW64\d3dx9_25.dll
2016-11-07 01:58:28 ----A---- C:\windows\system32\d3dx9_25.dll
2016-11-07 01:58:23 ----A---- C:\windows\SYSWOW64\d3dx9_24.dll
2016-11-07 01:58:23 ----A---- C:\windows\system32\d3dx9_24.dll
2016-11-01 13:45:27 ----D---- C:\Hry
======List of files/folders modified in the last 1 month======
2016-11-21 17:56:17 ----D---- C:\Program Files\trend micro
2016-11-21 17:54:23 ----D---- C:\windows\Prefetch
2016-11-21 17:53:48 ----D---- C:\windows\Temp
2016-11-21 17:53:40 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-21 17:53:30 ----RD---- C:\Program Files (x86)
2016-11-21 17:52:55 ----D---- C:\Users\Martina\AppData\Roaming\BitTorrent
2016-11-21 17:50:52 ----A---- C:\windows\SYSWOW64\log.txt
2016-11-21 17:47:31 ----AD---- C:\Windows
2016-11-21 17:44:20 ----D---- C:\windows\Tasks
2016-11-21 17:00:02 ----D---- C:\windows\system32\sru
2016-11-21 13:05:55 ----SHD---- C:\System Volume Information
2016-11-21 12:10:02 ----D---- C:\windows\Microsoft.NET
2016-11-21 11:32:44 ----HD---- C:\Program Files\WindowsApps
2016-11-21 11:32:39 ----D---- C:\windows\AUInstallAgent
2016-11-17 00:20:33 ----D---- C:\ProgramData\ProductData
2016-11-13 17:35:50 ----D---- C:\windows\system32\Drivers
2016-11-13 17:35:49 ----D---- C:\windows\Inf
2016-11-13 17:35:48 ----D---- C:\windows\system32\DriverStore
2016-11-13 16:41:51 ----AD---- C:\windows\System32
2016-11-13 16:41:51 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-11-12 17:01:57 ----D---- C:\AdwCleaner
2016-11-12 14:28:33 ----D---- C:\windows\Minidump
2016-11-10 22:09:45 ----D---- C:\Program Files (x86)\Dropbox
2016-11-10 14:15:45 ----D---- C:\FRST
2016-11-10 01:06:38 ----SHD---- C:\windows\Installer
2016-11-08 23:38:45 ----D---- C:\windows\system32\Tasks
2016-11-08 23:37:31 ----D---- C:\windows\SysWOW64
2016-11-08 23:36:54 ----D---- C:\windows\system32\Macromed
2016-11-08 23:36:41 ----D---- C:\windows\SYSWOW64\Macromed
2016-11-07 12:44:23 ----D---- C:\ProgramData\Origin
2016-11-07 12:43:48 ----D---- C:\Users\Martina\AppData\Roaming\Origin
2016-11-07 12:43:33 ----D---- C:\Program Files (x86)\Origin
2016-11-07 03:09:01 ----D---- C:\Program Files (x86)\Electronic Arts
2016-11-07 01:59:39 ----RSD---- C:\windows\assembly
2016-11-07 01:55:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-11-01 14:41:21 ----D---- C:\Program Files (x86)\Common Files
2016-11-01 14:40:56 ----RSD---- C:\windows\Fonts
2016-10-28 02:22:26 ----N---- C:\windows\system32\MpSigStub.exe
2016-10-25 12:22:12 ----D---- C:\windows\system32\NDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2013-02-08 39008]
R0 RapportHades64;RapportHades64; C:\windows\System32\Drivers\RapportHades64.sys [2016-10-06 235184]
R0 RapportKE64;RapportKE64; C:\windows\System32\Drivers\RapportKE64.sys [2016-10-06 489712]
R1 dtsoftbus01;@oem30.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\windows\System32\drivers\dtsoftbus01.sys [2014-01-24 283064]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2016-04-14 264552]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2016-04-14 186784]
R1 RapportCerberus_1609053;RapportCerberus_1609053; \??\C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1609053.sys [2016-09-16 1181672]
R1 RapportEI64;RapportEI64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2016-10-06 566248]
R1 RapportPG64;RapportPG64; \??\C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2016-10-06 547888]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2016-05-16 88480]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2016-04-14 170792]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2016-05-16 46400]
R3 ACPIVPC;@oem18.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2013-02-08 33560]
R3 AthBTPort;@oem17.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2012-09-30 88728]
R3 athr;@oem11.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athw8x.sys [2012-09-19 3653632]
R3 BTATH_A2DP;@oem16.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2012-09-30 344216]
R3 btath_avdt;@oem16.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\windows\system32\drivers\btath_avdt.sys [2012-09-30 114840]
R3 BTATH_BUS;@oem13.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\windows\System32\drivers\btath_bus.sys [2012-09-30 33944]
R3 BTATH_HCRP;@oem19.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\windows\System32\drivers\btath_hcrp.sys [2012-09-30 178840]
R3 BTATH_LWFLT;@oem20.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2012-09-30 76952]
R3 BTATH_RCP;@oem22.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\windows\System32\drivers\btath_rcp.sys [2012-09-30 135832]
R3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2012-09-30 575128]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 CnxtHdAudService;@oem6.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT64.sys [2012-06-27 1608864]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2012-08-03 8987456]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 L1C;@oem8.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\windows\system32\DRIVERS\L1C63x64.sys [2012-07-19 110744]
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-08-27 43832]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\System32\drivers\serscan.sys [2012-10-11 12288]
R3 SynTP;@oem10.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2012-08-27 448312]
R3 vm331avs;@oem12.inf,%USBCamera.DeviceDesc2%;Digital Camera 1; C:\windows\System32\Drivers\vm331avs.sys [2012-08-24 975104]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 dbx;dbx; C:\windows\system32\DRIVERS\dbx.sys []
S3 dg_ssudbus;@oem40.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 e1iexpress;@net1ic64.inf,%E1IExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2012-06-02 333824]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\System32\Drivers\GEARAspiWDM.sys []
S3 NETwNs64;@netwns64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2012-06-02 8604672]
S3 RSUSBVSTOR;@oem7.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2012-06-15 315536]
S3 ssudmdm;@oem41.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\windows\System32\drivers\usbscan.sys [2013-07-01 43008]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-09-30 220288]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg64.exe,-100; C:\windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 DbxSvc;DbxSvc; C:\windows\system32\DbxSvc.exe [2016-11-07 42096]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-03-03 2520928]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-05-27 2960672]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 RapportMgmtService;Rapport Management Service; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2016-10-06 2387952]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 107848]
S2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2016-11-07 2209296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08 270016]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2012-08-08 276288]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-26 43616]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-09-29 1738808]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-09-29 6951992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-30 107848]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-11-21 172488]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-11-07 2142728]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S4 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-10-29 194032]
-----------------EOF-----------------
- Přílohy
-
- log otm.rar
- (937 bajtů) Staženo 68 x
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zasekaný pc
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: zasekaný pc
teď se zdá, že je pc v pořádku - nezasekává se, ani nevyskakují okna s pluginy. Díky moc! 
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: zasekaný pc
Rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?