VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

zavirovany pocitac

https://forum.viry.cz:443/viewtopic.php?t=143562

Stránka 2 z 2

Re: zavirovany pocitac

Napsal: 23 bře 2015 18:33
od Roli
Rhonwyn píše:Tady je log
V PC nic špatného již nevidím.
Rhonwyn píše:... ale je divny ze to tam maji zase kdyz jsem jim tu mozilu pred chvili nainstalovala cerstvou
Zřejmě nějaká chybka s rozlišením monitoru, s jiným softíkem se to neděje ?
Napasuj jim prohlížeč myší do obrazovky aby byl celý, PC by si to mělo pamatovat.
Rhonwyn píše:Muzete mi kdyztak udelat preventivku mojeho pocitace prosim? mam zalozit novy tema, at se to neplete nebo muzem pokracovat tady?
Jo můžem pokračovat tady, jen dořešíme tenhle :)
Rhonwyn píše:Tak naslo to jeden vadny sektor
Ten vadný sektor na disku není dobrý.
Rhonwyn píše:Tak udelali jsme to s tou flashkou a biosem podle navodu, ale nic to neudelalo... zadny test se nespustil.
Tak je něco špatně, když jsi odešla z BIOSu uložilas nové nastavení dle návodu ?

Re: zavirovany pocitac

Napsal: 23 bře 2015 21:15
od Rhonwyn
Ano vsechno podle navodu... proste to nic neudelalo, a uz ten pocitac u sebe nemam tak s timhle uz nic zkouset nemuzu noveho.
Ta mozila lista jim to dela at uz je rozlisei jakykoliv. IE to nedela.

Re: zavirovany pocitac

Napsal: 24 bře 2015 15:58
od Roli
Rhonwyn píše:Ano vsechno podle navodu... proste to nic neudelalo, a uz ten pocitac u sebe nemam tak s timhle uz nic zkouset nemuzu noveho.
Nevadí na zásadní problém s hardware to nevypadá.
Rhonwyn píše:Ta mozila lista jim to dela at uz je rozlisei jakykoliv. IE to nedela.
Zvláštní, fakt nevím co s tím :?:

Jak jsem psal, napasuj myší okno prohlížeče na velikost monitoru a mělo by to být v pohodě.

No v každém případě breberky tam už nejsou.


Tak že mi sem můžeš klidně dát log ze svého PC.

Re: zavirovany pocitac

Napsal: 25 bře 2015 14:15
od Rhonwyn
Dbre diky. Tady je muj log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Scarlett at 2015-03-25 14:12:49
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 1065 GB (56%) free of 1908 GB
Total RAM: 8140 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:13:00, on 25.3.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\trend micro\Scarlett.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [LWS] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: CurseClientStartup.ccip
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SplitCamService (SpliCamService) - SplitCam Co. - C:\Program Files (x86)\SplitCam\SplitCamService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8477 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
"C:\Program Files (x86)\SplitCam\SplitCamService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
WLIDSvcM.exe 2036
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
atieclxx
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"taskhost.exe"
taskeng.exe {A98FBA77-E0FD-4D77-8DC1-15F223EEDD9E}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
ngservice.exe pipeserver
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
C:\Windows\system32\SearchIndexer.exe /Embedding
taskeng.exe {D0A93CFE-FABC-4418-BC4A-DD3F1043A3E3}
"C:\Users\Scarlett\AppData\Local\Apps\2.0\QKKP590E.Z0Y\BQRPON6Z.B4B\curs..tion_9e9e83ddf3ed3ead_0005.0001_36a9b62a0ea0a2ec\CurseClient.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe" -hide
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe" /hide
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Users\Scarlett\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Scarlett\AppData\Roaming\Mozilla\Firefox\Profiles\2ngyk29d.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.134 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-24 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-24 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2014-10-14 12697368]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-02-19 7416088]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-09-17 292088]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-27 5227112]
"LWS"=C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
"LifeCam"=C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [2010-12-13 135536]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-02-17 3978600]

C:\Users\Scarlett\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CurseClientStartup.ccip

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-03-25 14:03:24 ----D---- C:\rsit
2015-03-25 14:03:24 ----D---- C:\Program Files\trend micro
2015-03-25 08:24:01 ----A---- C:\Windows\system32\invagent.dll
2015-03-25 08:24:01 ----A---- C:\Windows\system32\generaltel.dll
2015-03-25 08:24:01 ----A---- C:\Windows\system32\devinv.dll
2015-03-25 08:24:01 ----A---- C:\Windows\system32\appraiser.dll
2015-03-25 08:24:01 ----A---- C:\Windows\system32\aepic.dll
2015-03-25 08:24:01 ----A---- C:\Windows\system32\aepdu.dll
2015-03-25 08:24:01 ----A---- C:\Windows\system32\aeinv.dll
2015-03-25 08:24:01 ----A---- C:\Windows\system32\acmigration.dll
2015-03-22 13:20:33 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-17 12:38:43 ----D---- C:\Users\Scarlett\AppData\Roaming\TeamViewer
2015-03-17 11:57:43 ----D---- C:\Program Files (x86)\TeamViewer
2015-03-15 15:14:08 ----D---- C:\Program Files\CCleaner
2015-03-15 00:38:21 ----D---- C:\Games
2015-03-11 14:23:38 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-11 14:23:38 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-11 14:23:38 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-11 14:23:38 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-11 14:23:38 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-11 14:23:38 ----A---- C:\Windows\system32\lpk.dll
2015-03-11 14:23:38 ----A---- C:\Windows\system32\fontsub.dll
2015-03-11 14:23:38 ----A---- C:\Windows\system32\dciman32.dll
2015-03-11 14:23:38 ----A---- C:\Windows\system32\atmlib.dll
2015-03-11 14:23:38 ----A---- C:\Windows\system32\atmfd.dll
2015-03-11 14:23:29 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-03-11 14:23:29 ----A---- C:\Windows\system32\drmv2clt.dll
2015-03-11 14:23:29 ----A---- C:\Windows\system32\blackbox.dll
2015-03-11 14:23:28 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-03-11 14:23:27 ----A---- C:\Windows\system32\wmp.dll
2015-03-11 14:23:26 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-03-11 14:23:26 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-03-11 14:23:26 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-03-11 14:23:26 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-11 14:23:25 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-03-11 14:23:23 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-03-11 14:23:23 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-03-11 14:23:23 ----A---- C:\Windows\system32\crypt32.dll
2015-03-11 14:23:22 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-03-11 14:23:21 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-03-11 14:23:20 ----A---- C:\Windows\system32\quartz.dll
2015-03-11 14:23:20 ----A---- C:\Windows\system32\evr.dll
2015-03-11 14:23:18 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-03-11 14:23:17 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-03-11 14:23:17 ----A---- C:\Windows\system32\cryptui.dll
2015-03-11 14:23:16 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-03-11 14:23:16 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-03-11 14:23:16 ----A---- C:\Windows\system32\mfplat.dll
2015-03-11 14:23:15 ----A---- C:\Windows\system32\winresume.exe
2015-03-11 14:23:14 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-03-11 14:23:14 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-03-11 14:23:14 ----A---- C:\Windows\system32\pcasvc.dll
2015-03-11 14:23:13 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-03-11 14:23:12 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-03-11 14:23:12 ----A---- C:\Windows\system32\msscp.dll
2015-03-11 14:23:12 ----A---- C:\Windows\system32\mf.dll
2015-03-11 14:23:12 ----A---- C:\Windows\system32\cryptsp.dll
2015-03-11 14:23:11 ----A---- C:\Windows\system32\winload.exe
2015-03-11 14:23:10 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-03-11 14:23:10 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-03-11 14:23:10 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-03-11 14:23:10 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-03-11 14:23:10 ----A---- C:\Windows\system32\wintrust.dll
2015-03-11 14:23:10 ----A---- C:\Windows\system32\srcore.dll
2015-03-11 14:23:10 ----A---- C:\Windows\system32\rstrui.exe
2015-03-11 14:23:10 ----A---- C:\Windows\system32\msnetobj.dll
2015-03-11 14:23:10 ----A---- C:\Windows\system32\cryptnet.dll
2015-03-11 14:23:10 ----A---- C:\Windows\system32\ci.dll
2015-03-11 14:23:10 ----A---- C:\Windows\system32\audiosrv.dll
2015-03-11 14:23:10 ----A---- C:\Windows\system32\appidsvc.dll
2015-03-11 14:23:09 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-03-11 14:23:09 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-03-11 14:23:09 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-03-11 14:23:09 ----A---- C:\Windows\system32\qdvd.dll
2015-03-11 14:23:09 ----A---- C:\Windows\system32\pcadm.dll
2015-03-11 14:23:09 ----A---- C:\Windows\system32\drivers\appid.sys
2015-03-11 14:23:09 ----A---- C:\Windows\system32\cryptsvc.dll
2015-03-11 14:23:09 ----A---- C:\Windows\system32\AudioSes.dll
2015-03-11 14:23:09 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-03-11 14:23:09 ----A---- C:\Windows\system32\AudioEng.dll
2015-03-11 14:23:09 ----A---- C:\Windows\system32\audiodg.exe
2015-03-11 14:23:08 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-03-11 14:23:08 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-03-11 14:23:08 ----A---- C:\Windows\system32\smss.exe
2015-03-11 14:23:08 ----A---- C:\Windows\system32\rrinstaller.exe
2015-03-11 14:23:08 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-03-11 14:23:07 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-03-11 14:23:07 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-03-11 14:23:07 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-03-11 14:23:07 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-03-11 14:23:07 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-03-11 14:23:07 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-03-11 14:23:07 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\srclient.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\spwmp.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\pcawrk.exe
2015-03-11 14:23:07 ----A---- C:\Windows\system32\pcalua.exe
2015-03-11 14:23:07 ----A---- C:\Windows\system32\pcaevts.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\msmmsp.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\mfps.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\mfpmp.exe
2015-03-11 14:23:07 ----A---- C:\Windows\system32\EncDump.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\dxmasf.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\csrsrv.dll
2015-03-11 14:23:07 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-03-11 14:23:07 ----A---- C:\Windows\system32\appidapi.dll
2015-03-11 14:23:06 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-03-11 14:23:06 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-03-11 14:23:06 ----A---- C:\Windows\system32\wmploc.DLL
2015-03-11 14:23:06 ----A---- C:\Windows\system32\apisetschema.dll
2015-03-11 14:23:05 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-03-11 14:23:05 ----A---- C:\Windows\system32\mferror.dll
2015-03-11 14:22:53 ----A---- C:\Windows\system32\rdpudd.dll
2015-03-11 14:22:53 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-11 14:22:53 ----A---- C:\Windows\system32\rdpcorets.dll
2015-03-11 14:22:37 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-11 14:22:37 ----A---- C:\Windows\system32\ubpm.dll
2015-03-11 14:22:29 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-11 14:22:29 ----A---- C:\Windows\system32\shell32.dll
2015-03-11 14:22:25 ----A---- C:\Windows\system32\schannel.dll
2015-03-11 14:22:25 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-03-11 14:22:25 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-03-11 14:22:24 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-03-11 14:22:24 ----A---- C:\Windows\system32\wdigest.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\TSpkg.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\sspisrv.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\sspicli.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\secur32.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\ncrypt.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\msv1_0.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\lsass.exe
2015-03-11 14:22:24 ----A---- C:\Windows\system32\lsasrv.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\kerberos.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-03-11 14:22:24 ----A---- C:\Windows\system32\credssp.dll
2015-03-11 14:22:24 ----A---- C:\Windows\system32\auditpol.exe
2015-03-11 14:22:23 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-03-11 14:22:23 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-03-11 14:22:23 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-03-11 14:22:23 ----A---- C:\Windows\system32\msobjs.dll
2015-03-11 14:22:23 ----A---- C:\Windows\system32\msaudite.dll
2015-03-11 14:22:23 ----A---- C:\Windows\system32\adtschema.dll
2015-03-11 14:22:18 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-11 14:22:18 ----A---- C:\Windows\system32\msctf.dll
2015-03-11 14:22:17 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-11 14:22:17 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-11 14:20:00 ----A---- C:\Windows\system32\win32k.sys
2015-03-11 14:19:58 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-11 14:19:58 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-11 14:19:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-03-11 14:19:58 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-03-11 14:19:58 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-03-11 14:19:58 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-03-11 14:19:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-11 14:19:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-11 14:19:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-11 14:19:57 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-03-11 14:19:57 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-03-11 14:19:57 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-11 14:19:57 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-11 14:19:57 ----A---- C:\Windows\system32\iernonce.dll
2015-03-11 14:19:57 ----A---- C:\Windows\system32\ie4uinit.exe
2015-03-11 14:19:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-03-11 14:19:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-11 14:19:56 ----A---- C:\Windows\system32\urlmon.dll
2015-03-11 14:19:56 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-11 14:19:55 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-03-11 14:19:55 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-03-11 14:19:55 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-03-11 14:19:55 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-03-11 14:19:55 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-11 14:19:55 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-11 14:19:55 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-03-11 14:19:55 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-11 14:19:55 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-11 14:19:55 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-03-11 14:19:55 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-11 14:19:54 ----A---- C:\Windows\system32\iesetup.dll
2015-03-11 14:19:54 ----A---- C:\Windows\system32\iertutil.dll
2015-03-11 14:19:54 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-11 14:19:53 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-03-11 14:19:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-11 14:19:49 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-11 14:19:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-11 14:19:49 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-03-11 14:19:49 ----A---- C:\Windows\system32\jsproxy.dll
2015-03-11 14:19:49 ----A---- C:\Windows\system32\ieUnatt.exe
2015-03-11 14:19:49 ----A---- C:\Windows\system32\dxtmsft.dll
2015-03-11 14:19:48 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-03-11 14:19:48 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-11 14:19:48 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-11 14:19:48 ----A---- C:\Windows\system32\jscript9.dll
2015-03-11 14:19:48 ----A---- C:\Windows\system32\ieui.dll
2015-03-11 14:19:48 ----A---- C:\Windows\system32\ieframe.dll
2015-03-11 14:19:47 ----A---- C:\Windows\system32\wininet.dll
2015-03-11 14:19:47 ----A---- C:\Windows\system32\vbscript.dll
2015-03-11 14:19:47 ----A---- C:\Windows\system32\msrating.dll
2015-03-11 14:19:47 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-11 14:19:46 ----A---- C:\Windows\system32\mshtml.dll
2015-03-11 14:18:55 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-11 14:18:54 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-05 09:36:55 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-03-05 09:36:55 ----A---- C:\Windows\system32\wdi.dll
2015-03-05 09:36:55 ----A---- C:\Windows\system32\powertracker.dll
2015-03-05 09:36:55 ----A---- C:\Windows\system32\perftrack.dll

======List of files/folders modified in the last 1 month======

2015-03-25 14:12:40 ----D---- C:\Windows\Prefetch
2015-03-25 14:12:00 ----D---- C:\Windows\System32
2015-03-25 14:09:48 ----D---- C:\Windows\winsxs
2015-03-25 14:09:48 ----D---- C:\Windows\Temp
2015-03-25 14:09:13 ----D---- C:\Windows\system32\config
2015-03-25 14:07:48 ----SD---- C:\Windows\system32\CompatTel
2015-03-25 14:07:46 ----D---- C:\Windows\system32\appraiser
2015-03-25 14:07:45 ----D---- C:\Windows\system32\wbem
2015-03-25 14:07:42 ----D---- C:\Windows\AppPatch
2015-03-25 14:05:17 ----SHD---- C:\System Volume Information
2015-03-25 14:03:24 ----RD---- C:\Program Files
2015-03-25 14:03:14 ----D---- C:\Users\Scarlett\AppData\Roaming\uTorrent
2015-03-25 13:49:19 ----D---- C:\Users\Scarlett\AppData\Roaming\vlc
2015-03-25 08:20:52 ----D---- C:\Program Files (x86)\World of Warcraft
2015-03-24 23:59:25 ----D---- C:\Users\Scarlett\AppData\Roaming\TS3Client
2015-03-23 13:35:16 ----D---- C:\Windows\inf
2015-03-23 13:35:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-23 13:09:39 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-23 13:09:36 ----RD---- C:\Program Files (x86)
2015-03-21 07:30:31 ----D---- C:\Program Files (x86)\Battle.net
2015-03-20 20:49:33 ----D---- C:\Users\Scarlett\AppData\Roaming\Skype
2015-03-20 19:57:55 ----SHD---- C:\Windows\Installer
2015-03-20 19:57:54 ----SHD---- C:\Config.Msi
2015-03-20 19:57:51 ----RD---- C:\Program Files (x86)\Skype
2015-03-20 19:57:48 ----D---- C:\ProgramData\Skype
2015-03-20 01:20:04 ----D---- C:\Program Files (x86)\Hearthstone
2015-03-19 01:04:37 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-17 11:58:29 ----D---- C:\Windows\system32\Tasks
2015-03-17 11:57:48 ----RSD---- C:\Windows\Fonts
2015-03-16 11:05:50 ----D---- C:\Windows
2015-03-15 15:18:49 ----D---- C:\Program Files (x86)\Steam
2015-03-15 15:15:03 ----D---- C:\Windows\Panther
2015-03-15 15:15:03 ----D---- C:\Windows\Logs
2015-03-15 15:15:03 ----D---- C:\Windows\debug
2015-03-12 13:32:17 ----D---- C:\Windows\rescache
2015-03-12 12:12:52 ----D---- C:\Windows\SysWOW64
2015-03-12 12:12:51 ----D---- C:\Windows\SYSWOW64\Dism
2015-03-12 12:12:51 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-12 12:12:51 ----D---- C:\Program Files\Windows Media Player
2015-03-12 12:12:51 ----D---- C:\Program Files (x86)\Windows Media Player
2015-03-12 12:12:46 ----D---- C:\Windows\system32\drivers
2015-03-12 12:12:45 ----D---- C:\Windows\system32\Dism
2015-03-12 12:12:45 ----D---- C:\Windows\system32\cs-CZ
2015-03-12 12:12:44 ----D---- C:\Windows\system32\en-US
2015-03-12 12:12:33 ----D---- C:\Windows\system32\Boot
2015-03-12 12:12:32 ----D---- C:\Windows\system32\CodeIntegrity
2015-03-12 12:11:58 ----D---- C:\Program Files\Internet Explorer
2015-03-12 12:11:55 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-12 12:11:40 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-12 02:25:18 ----D---- C:\Windows\system32\MRT
2015-03-12 02:21:40 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 14:08:00 ----D---- C:\Windows\system32\wfp
2015-03-11 14:08:00 ----D---- C:\Windows\system32\catroot2
2015-03-11 14:07:54 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-03-11 14:07:39 ----D---- C:\Windows\registration
2015-03-05 08:42:22 ----D---- C:\Windows\Tasks
2015-03-05 08:42:22 ----D---- C:\Windows\system32\DriverStore
2015-03-05 08:42:21 ----D---- C:\Users\Scarlett\AppData\Roaming\Battle.net
2015-03-04 11:05:45 ----D---- C:\Windows\tracing
2015-03-02 14:41:11 ----D---- C:\Users\Scarlett\AppData\Roaming\SimulationCraft
2015-02-27 23:30:42 ----D---- C:\Users\Scarlett\AppData\Roaming\Bioshock2Steam

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-24 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-24 267632]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2014-05-28 672104]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2014-05-28 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-09-17 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-24 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-24 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-24 436624]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-24 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-24 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-11-24 116728]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-24 271752]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-11-21 18959360]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-11-21 589312]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-05-14 3962840]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\DRIVERS\ISCTD.sys [2014-02-03 44744]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-09-17 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-09-17 795632]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
R3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
R3 LVUVC64;Logitech HD Pro Webcam C920(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-07-16 941784]
R3 scvad_simple;SplitCam Virtual Microphone (WDM); C:\Windows\system32\drivers\SplitCamAudio.sys [2014-06-30 23552]
R3 splitcam_hd_driver;SplitCam Virtual Video Driver; C:\Windows\system32\DRIVERS\splitcam_hd_driver.sys [2014-06-30 37496]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-12-13 36720]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-11-21 244736]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-24 50344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-02-17 2490216]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-02-16 417552]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-12-13 194416]
R2 SpliCamService;SplitCamService; C:\Program Files (x86)\SplitCam\SplitCamService.exe [2014-09-15 311424]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-02-17 5436176]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-24 4012248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 107912]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-19 268464]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2014-12-24 174112]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 107912]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-02-20 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-22 148080]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-25 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Re: zavirovany pocitac

Napsal: 26 bře 2015 17:47
od Roli
Jen trochu uklidíme :)


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

Re: zavirovany pocitac

Napsal: 27 bře 2015 11:52
od Rhonwyn
tak hotovo, asi tam nic nebylo. to je dobre :)

# AdwCleaner v4.113 - Logfile created 27/03/2015 at 11:47:41
# Updated 22/03/2015 by Xplode
# Database : 2015-03-26.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Scarlett - SCARLETT-PC
# Running from : C:\Users\Scarlett\Desktop\adwcleaner_4.113.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17689


-\\ Mozilla Firefox v36.0.4 (x86 cs)


-\\ Google Chrome v41.0.2272.101


*************************

AdwCleaner[R1].txt - [906 bytes] - [27/03/2015 11:46:11]
AdwCleaner[S1].txt - [836 bytes] - [27/03/2015 11:47:41]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [894 bytes] ##########

Re: zavirovany pocitac

Napsal: 27 bře 2015 14:53
od Roli
Rhonwyn píše:tak hotovo, asi tam nic nebylo. to je dobre :)
Ano máš to čisté :)
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz