Zdravím, cca jednou denně se mi stane "modrá smrt". Minidump píše, že to způsobuje proces csrss.exe a MODULE_NAME: dxgmms1, IMAGE_NAME: dxgmms1.sys
můžete mi mrknout na log? Posílám na kontrolu poprvé, tak to bude asi masakr...... Díky!!!!
tady je log z rsit
Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-09-29 14:44:21
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 54 GB (23%) free of 238 GB
Total RAM: 8190 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:44:25, on 29.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?affID=1198 ... 1A4D5E968D
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentControl_v6 Toolbar - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files (x86)\uTorrentControl_v6\prxtbuTo2.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: uTorrentControl_v6 - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files (x86)\uTorrentControl_v6\prxtbuTo2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: uTorrentControl_v6 Toolbar - {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program Files (x86)\uTorrentControl_v6\prxtbuTo2.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKCU\..\Run: [FreeCodecPack974258.exe] "C:\Users\Milan\AppData\Local\Temp\FreeCodecPack974258.exe" /XML="C:\Users\Milan\AppData\Local\Temp\336E.tmp" /ROS /STP=0:2
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 15495 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1841488097-1581442170-1765425471738171750751027089-138171212119658292381847716977
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c9e28f41-7f9d-48f9-ba4d-d488ce3148b9 -SystemEventPortName:HostProcess-0f623384-a2be-4d27-8ab0-120f44489553 -IoCancelEventPortName:HostProcess-ed95c63e-7fbd-48cf-92d5-a646819c04cb -NonStateChangingEventPortName:HostProcess-2a20c9a1-e6a9-4599-ac76-390000d74a32 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5c9f20b5-91df-4c8c-95a5-789fa654e84b -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\Windows\splwow64.exe 12288
C:\Windows\System32\svchost.exe -k secsvcs
"C:\totalcmd\TOTALCMD64.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="896.0.1236015956\103626493" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x05e2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.2018 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="896.1.1202273563\856611397" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="896.5.978539908\1898241239" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="896.8.404480739\195406348" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="896.9.1063945576\2145572312" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="896.10.130511259\40889455" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="896.12.2581046\993985698" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="896.14.25313035\245293305" /prefetch:673131151
"C:\Program Files (x86)\Windows Kits\8.1\Debuggers\x64\windbg.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="896.17.1877677378\441903534" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="896.18.1749898064\261075780" --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="896.19.528913346\1185201528" /prefetch:673131151
"F:\Download\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96f454ea-9d38-474f-b504-56193e00c1a5}]
uTorrentControl_v6 Toolbar - C:\Program Files (x86)\uTorrentControl_v6\prxtbuTo2.dll [2013-07-09 226592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
{96f454ea-9d38-474f-b504-56193e00c1a5} - uTorrentControl_v6 Toolbar - C:\Program Files (x86)\uTorrentControl_v6\prxtbuTo2.dll [2013-07-09 226592]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
"FreeCodecPack974258.exe"=C:\Users\Milan\AppData\Local\Temp\FreeCodecPack974258.exe [2013-09-29 817536]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nvtmru]
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-08-27 1028896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-23 16:31:22 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-23 16:31:22 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-09-29 14:44:23 ----D---- C:\Windows\Temp
2013-09-29 14:44:21 ----RD---- C:\Program Files
2013-09-29 14:33:13 ----D---- C:\Windows\System32
2013-09-29 14:33:13 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-29 14:33:12 ----D---- C:\Windows\inf
2013-09-29 14:24:48 ----HD---- C:\ProgramData
2013-09-29 14:10:53 ----D---- C:\ProgramData\NVIDIA
2013-09-29 11:12:14 ----D---- C:\Windows\system32\config
2013-09-29 10:57:04 ----D---- C:\Windows\Microsoft.NET
2013-09-29 09:35:14 ----ASD---- C:\ProgramData\Microsoft
2013-09-29 03:12:03 ----SHD---- C:\Windows\Installer
2013-09-29 03:07:38 ----D---- C:\Windows\SysWOW64
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-29 03:05:36 ----SHD---- C:\System Volume Information
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 19:53:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-28 19:49:25 ----RD---- C:\Program Files (x86)
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:40:49 ----D---- C:\Windows
2013-09-28 12:33:03 ----D---- C:\Windows\system32\drivers
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-28 11:45:49 ----RSD---- C:\Windows\assembly
2013-09-28 11:43:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-28 11:43:18 ----D---- C:\Windows\system32\en-US
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-24 23:54:31 ----D---- C:\Program Files (x86)\uTorrentControl_v6
2013-09-23 16:33:23 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-23 16:33:15 ----D---- C:\Windows\system32\catroot
2013-09-23 16:33:14 ----D---- C:\Windows\system32\DriverStore
2013-09-23 16:32:00 ----D---- C:\Windows\system32\catroot2
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-22 11:05:27 ----D---- C:\ProgramData\Microsoft Help
2013-09-22 03:01:00 ----A---- C:\Windows\win.ini
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-19 12:15:48 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-14 03:50:08 ----D---- C:\Windows\rescache
2013-09-14 03:24:37 ----D---- C:\Windows\winsxs
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:19:58 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-14 03:19:58 ----D---- C:\Windows\system32\cs-CZ
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
2013-08-30 09:47:14 ----A---- C:\Windows\system32\aswBoot.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-05-12 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-05-12 413472]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problém s BSOD asi problém s csrss.exe
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119690
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s BSOD asi problém s csrss.exe
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s BSOD asi problém s csrss.exe
Děkuji a tady to je!
# AdwCleaner v3.005 - Report created 29/09/2013 at 18:20:13
# Updated 22/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Milan - MILAN-PC
# Running from : C:\Users\Milan\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\uTorrentControl_v6
Folder Deleted : C:\Users\Milan\AppData\Local\Conduit
Folder Deleted : C:\Users\Milan\AppData\Local\PackageAware
Folder Deleted : C:\Users\Milan\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Milan\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Milan\AppData\LocalLow\uTorrentControl_v6
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKCU\Software\a488d9b33aba46
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289075
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{96F454EA-9D38-474F-B504-56193E00C1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD90659F-D5B2-4104-9504-7CA36E6532DF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96F454EA-9D38-474F-B504-56193E00C1A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CD90659F-D5B2-4104-9504-7CA36E6532DF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CD90659F-D5B2-4104-9504-7CA36E6532DF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B1E46581-521B-4100-9B33-2BF486A3DC27}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4799010B-0298-4DA4-AD69-22163F266F3B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{96F454EA-9D38-474F-B504-56193E00C1A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{96F454EA-9D38-474F-B504-56193E00C1A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{96F454EA-9D38-474F-B504-56193E00C1A5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{96F454EA-9D38-474F-B504-56193E00C1A5}]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\uTorrentControl_v6
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentControl_v6
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\uTorrentControl_v6
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentControl_v6 Toolbar
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16686
-\\ Google Chrome v29.0.1547.76
[ File : C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [3889 octets] - [29/09/2013 18:19:24]
AdwCleaner[S0].txt - [3653 octets] - [29/09/2013 18:20:13]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3713 octets] ##########
# AdwCleaner v3.005 - Report created 29/09/2013 at 18:20:13
# Updated 22/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Milan - MILAN-PC
# Running from : C:\Users\Milan\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\uTorrentControl_v6
Folder Deleted : C:\Users\Milan\AppData\Local\Conduit
Folder Deleted : C:\Users\Milan\AppData\Local\PackageAware
Folder Deleted : C:\Users\Milan\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Milan\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Milan\AppData\LocalLow\uTorrentControl_v6
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKCU\Software\a488d9b33aba46
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289075
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{96F454EA-9D38-474F-B504-56193E00C1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD90659F-D5B2-4104-9504-7CA36E6532DF}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96F454EA-9D38-474F-B504-56193E00C1A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CD90659F-D5B2-4104-9504-7CA36E6532DF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CD90659F-D5B2-4104-9504-7CA36E6532DF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B1E46581-521B-4100-9B33-2BF486A3DC27}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4799010B-0298-4DA4-AD69-22163F266F3B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{96F454EA-9D38-474F-B504-56193E00C1A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{96F454EA-9D38-474F-B504-56193E00C1A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{96F454EA-9D38-474F-B504-56193E00C1A5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{96F454EA-9D38-474F-B504-56193E00C1A5}]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\uTorrentControl_v6
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\uTorrentControl_v6
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\uTorrentControl_v6
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentControl_v6 Toolbar
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16686
-\\ Google Chrome v29.0.1547.76
[ File : C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [3889 octets] - [29/09/2013 18:19:24]
AdwCleaner[S0].txt - [3653 octets] - [29/09/2013 18:20:13]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3713 octets] ##########
-
Rudy
- Site Admin
- Příspěvky: 119690
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s BSOD asi problém s csrss.exe
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s BSOD asi problém s csrss.exe
Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-09-29 19:52:46
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 51 GB (21%) free of 238 GB
Total RAM: 8190 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:52:51, on 29.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14397 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-1720735325539312831-4732920816204671172056619224-14196559011258498158-1267001
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7b34594d-af6d-477b-b72d-b16c43eee538 -SystemEventPortName:HostProcess-13120b89-0be7-4928-b6c5-b8285b894c00 -IoCancelEventPortName:HostProcess-e11e76c3-3741-45ce-9335-5f1ce5d4eb44 -NonStateChangingEventPortName:HostProcess-7f6dd34f-f63f-47df-b1f8-9b7320d769f4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b42639b1-37c0-437c-9e03-62cddb840b26 -DeviceGroupId:WpdFsGroup
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe"
\??\C:\Windows\system32\conhost.exe "-1349317158264561714-1350602293-16794628982831570851974201093-1213454583-796632265
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5264.0.16544367\1091728806" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x05e2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.2018 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="5264.1.81204690\1041686656" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5264.4.456881219\2140960070" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"F:\Download\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-29 6581488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-29 18:19:21 ----D---- C:\AdwCleaner
2013-09-29 18:15:04 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-09-29 15:08:29 ----D---- C:\Users\Milan\AppData\Roaming\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-29 15:06:06 ----D---- C:\Users\Milan\AppData\Roaming\Malwarebytes
2013-09-29 15:05:54 ----D---- C:\ProgramData\Malwarebytes
2013-09-29 15:05:53 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-29 15:05:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-09-29 15:04:02 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SYSWOW64\directx
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-23 16:31:22 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-23 16:31:22 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-09-29 19:52:50 ----D---- C:\Windows\Temp
2013-09-29 18:34:54 ----D---- C:\Windows\system32\config
2013-09-29 18:25:58 ----D---- C:\Windows\System32
2013-09-29 18:25:58 ----D---- C:\Windows\inf
2013-09-29 18:25:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-29 18:21:33 ----D---- C:\ProgramData\NVIDIA
2013-09-29 18:20:14 ----RD---- C:\Program Files (x86)
2013-09-29 18:20:14 ----HD---- C:\ProgramData
2013-09-29 15:08:09 ----RD---- C:\Program Files
2013-09-29 15:06:32 ----D---- C:\Windows\system32\drivers
2013-09-29 15:04:25 ----SHD---- C:\Windows\Installer
2013-09-29 15:04:13 ----ASD---- C:\ProgramData\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SysWOW64
2013-09-29 10:57:04 ----D---- C:\Windows\Microsoft.NET
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-29 03:05:36 ----SHD---- C:\System Volume Information
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 19:53:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:40:49 ----D---- C:\Windows
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-28 11:45:49 ----RSD---- C:\Windows\assembly
2013-09-28 11:43:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-28 11:43:18 ----D---- C:\Windows\system32\en-US
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-23 16:33:23 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-23 16:33:15 ----D---- C:\Windows\system32\catroot
2013-09-23 16:33:14 ----D---- C:\Windows\system32\DriverStore
2013-09-23 16:32:00 ----D---- C:\Windows\system32\catroot2
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-22 11:05:27 ----D---- C:\ProgramData\Microsoft Help
2013-09-22 03:01:00 ----A---- C:\Windows\win.ini
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-19 12:15:48 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-14 03:50:08 ----D---- C:\Windows\rescache
2013-09-14 03:24:37 ----D---- C:\Windows\winsxs
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:19:58 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-14 03:19:58 ----D---- C:\Windows\system32\cs-CZ
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
2013-08-30 09:47:14 ----A---- C:\Windows\system32\aswBoot.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-05-12 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-05-12 413472]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Run by Milan at 2013-09-29 19:52:46
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 51 GB (21%) free of 238 GB
Total RAM: 8190 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:52:51, on 29.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14397 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-1720735325539312831-4732920816204671172056619224-14196559011258498158-1267001
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7b34594d-af6d-477b-b72d-b16c43eee538 -SystemEventPortName:HostProcess-13120b89-0be7-4928-b6c5-b8285b894c00 -IoCancelEventPortName:HostProcess-e11e76c3-3741-45ce-9335-5f1ce5d4eb44 -NonStateChangingEventPortName:HostProcess-7f6dd34f-f63f-47df-b1f8-9b7320d769f4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b42639b1-37c0-437c-9e03-62cddb840b26 -DeviceGroupId:WpdFsGroup
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe"
\??\C:\Windows\system32\conhost.exe "-1349317158264561714-1350602293-16794628982831570851974201093-1213454583-796632265
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5264.0.16544367\1091728806" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x05e2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.2018 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="5264.1.81204690\1041686656" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5264.4.456881219\2140960070" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"F:\Download\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-29 6581488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-29 18:19:21 ----D---- C:\AdwCleaner
2013-09-29 18:15:04 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-09-29 15:08:29 ----D---- C:\Users\Milan\AppData\Roaming\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-29 15:06:06 ----D---- C:\Users\Milan\AppData\Roaming\Malwarebytes
2013-09-29 15:05:54 ----D---- C:\ProgramData\Malwarebytes
2013-09-29 15:05:53 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-29 15:05:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-09-29 15:04:02 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SYSWOW64\directx
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-23 16:31:22 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-23 16:31:22 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-09-29 19:52:50 ----D---- C:\Windows\Temp
2013-09-29 18:34:54 ----D---- C:\Windows\system32\config
2013-09-29 18:25:58 ----D---- C:\Windows\System32
2013-09-29 18:25:58 ----D---- C:\Windows\inf
2013-09-29 18:25:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-29 18:21:33 ----D---- C:\ProgramData\NVIDIA
2013-09-29 18:20:14 ----RD---- C:\Program Files (x86)
2013-09-29 18:20:14 ----HD---- C:\ProgramData
2013-09-29 15:08:09 ----RD---- C:\Program Files
2013-09-29 15:06:32 ----D---- C:\Windows\system32\drivers
2013-09-29 15:04:25 ----SHD---- C:\Windows\Installer
2013-09-29 15:04:13 ----ASD---- C:\ProgramData\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SysWOW64
2013-09-29 10:57:04 ----D---- C:\Windows\Microsoft.NET
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-29 03:05:36 ----SHD---- C:\System Volume Information
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 19:53:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:40:49 ----D---- C:\Windows
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-28 11:45:49 ----RSD---- C:\Windows\assembly
2013-09-28 11:43:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-28 11:43:18 ----D---- C:\Windows\system32\en-US
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-23 16:33:23 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-23 16:33:15 ----D---- C:\Windows\system32\catroot
2013-09-23 16:33:14 ----D---- C:\Windows\system32\DriverStore
2013-09-23 16:32:00 ----D---- C:\Windows\system32\catroot2
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-22 11:05:27 ----D---- C:\ProgramData\Microsoft Help
2013-09-22 03:01:00 ----A---- C:\Windows\win.ini
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-19 12:15:48 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-14 03:50:08 ----D---- C:\Windows\rescache
2013-09-14 03:24:37 ----D---- C:\Windows\winsxs
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:19:58 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-14 03:19:58 ----D---- C:\Windows\system32\cs-CZ
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
2013-08-30 09:47:14 ----A---- C:\Windows\system32\aswBoot.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-05-12 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-05-12 413472]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119690
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s BSOD asi problém s csrss.exe
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Program Files (x86)\Microsoft\BingBar
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:services
BBUpdate
BBSvc
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s BSOD asi problém s csrss.exe
Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-09-30 10:34:24
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 51 GB (21%) free of 238 GB
Total RAM: 8190 MB (84% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:34:27, on 30.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14070 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
taskeng.exe {87AD02A1-99A9-4DE0-BEEF-30B394F69F1C}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-190118039412209987681225492523215765352038368146-20762072972135072500-1617410985
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c81dd97a-d7a0-4ba7-a22b-5d7a2c9147d3 -SystemEventPortName:HostProcess-0ca4b18c-1c10-4c3c-a51c-4e53a210d271 -IoCancelEventPortName:HostProcess-0742e8ed-87db-45bd-a057-fd10a7c8c22d -NonStateChangingEventPortName:HostProcess-2b7871e1-fa1e-4936-a391-e259039642fd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d7e78c7b-89f2-44cc-bda9-0776dbd434eb -DeviceGroupId:WpdFsGroup
"C:\Users\Milan\Desktop\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-29 6581488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-30 10:30:00 ----D---- C:\_OTM
2013-09-29 18:19:21 ----D---- C:\AdwCleaner
2013-09-29 18:15:04 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-09-29 15:08:29 ----D---- C:\Users\Milan\AppData\Roaming\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-29 15:06:06 ----D---- C:\Users\Milan\AppData\Roaming\Malwarebytes
2013-09-29 15:05:54 ----D---- C:\ProgramData\Malwarebytes
2013-09-29 15:05:53 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-29 15:05:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-09-29 15:04:02 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SYSWOW64\directx
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-23 16:31:22 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-23 16:31:22 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-09-30 10:33:39 ----D---- C:\Windows\Temp
2013-09-30 10:33:06 ----D---- C:\ProgramData\NVIDIA
2013-09-30 10:31:17 ----D---- C:\Windows\system32\config
2013-09-30 09:59:18 ----ASD---- C:\ProgramData\Microsoft
2013-09-30 09:57:12 ----D---- C:\Windows\System32
2013-09-30 09:57:12 ----D---- C:\Windows\inf
2013-09-30 09:57:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-29 18:20:14 ----RD---- C:\Program Files (x86)
2013-09-29 18:20:14 ----HD---- C:\ProgramData
2013-09-29 15:08:09 ----RD---- C:\Program Files
2013-09-29 15:06:32 ----D---- C:\Windows\system32\drivers
2013-09-29 15:04:25 ----SHD---- C:\Windows\Installer
2013-09-29 15:03:49 ----D---- C:\Windows\SysWOW64
2013-09-29 10:57:04 ----D---- C:\Windows\Microsoft.NET
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-29 03:05:36 ----SHD---- C:\System Volume Information
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 19:53:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:40:49 ----D---- C:\Windows
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-28 11:45:49 ----RSD---- C:\Windows\assembly
2013-09-28 11:43:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-28 11:43:18 ----D---- C:\Windows\system32\en-US
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-23 16:33:23 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-23 16:33:15 ----D---- C:\Windows\system32\catroot
2013-09-23 16:33:14 ----D---- C:\Windows\system32\DriverStore
2013-09-23 16:32:00 ----D---- C:\Windows\system32\catroot2
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-22 11:05:27 ----D---- C:\ProgramData\Microsoft Help
2013-09-22 03:01:00 ----A---- C:\Windows\win.ini
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-19 12:15:48 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-14 03:50:08 ----D---- C:\Windows\rescache
2013-09-14 03:24:37 ----D---- C:\Windows\winsxs
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:19:58 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-14 03:19:58 ----D---- C:\Windows\system32\cs-CZ
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-05-12 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-05-12 413472]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Run by Milan at 2013-09-30 10:34:24
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 51 GB (21%) free of 238 GB
Total RAM: 8190 MB (84% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:34:27, on 30.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14070 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
taskeng.exe {87AD02A1-99A9-4DE0-BEEF-30B394F69F1C}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-190118039412209987681225492523215765352038368146-20762072972135072500-1617410985
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c81dd97a-d7a0-4ba7-a22b-5d7a2c9147d3 -SystemEventPortName:HostProcess-0ca4b18c-1c10-4c3c-a51c-4e53a210d271 -IoCancelEventPortName:HostProcess-0742e8ed-87db-45bd-a057-fd10a7c8c22d -NonStateChangingEventPortName:HostProcess-2b7871e1-fa1e-4936-a391-e259039642fd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d7e78c7b-89f2-44cc-bda9-0776dbd434eb -DeviceGroupId:WpdFsGroup
"C:\Users\Milan\Desktop\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-29 6581488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-30 10:30:00 ----D---- C:\_OTM
2013-09-29 18:19:21 ----D---- C:\AdwCleaner
2013-09-29 18:15:04 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-09-29 15:08:29 ----D---- C:\Users\Milan\AppData\Roaming\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-29 15:06:06 ----D---- C:\Users\Milan\AppData\Roaming\Malwarebytes
2013-09-29 15:05:54 ----D---- C:\ProgramData\Malwarebytes
2013-09-29 15:05:53 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-29 15:05:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-09-29 15:04:02 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SYSWOW64\directx
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-23 16:31:24 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-23 16:31:23 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-23 16:31:22 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-23 16:31:22 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-09-30 10:33:39 ----D---- C:\Windows\Temp
2013-09-30 10:33:06 ----D---- C:\ProgramData\NVIDIA
2013-09-30 10:31:17 ----D---- C:\Windows\system32\config
2013-09-30 09:59:18 ----ASD---- C:\ProgramData\Microsoft
2013-09-30 09:57:12 ----D---- C:\Windows\System32
2013-09-30 09:57:12 ----D---- C:\Windows\inf
2013-09-30 09:57:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-29 18:20:14 ----RD---- C:\Program Files (x86)
2013-09-29 18:20:14 ----HD---- C:\ProgramData
2013-09-29 15:08:09 ----RD---- C:\Program Files
2013-09-29 15:06:32 ----D---- C:\Windows\system32\drivers
2013-09-29 15:04:25 ----SHD---- C:\Windows\Installer
2013-09-29 15:03:49 ----D---- C:\Windows\SysWOW64
2013-09-29 10:57:04 ----D---- C:\Windows\Microsoft.NET
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-29 03:05:36 ----SHD---- C:\System Volume Information
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 19:53:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:40:49 ----D---- C:\Windows
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-28 11:45:49 ----RSD---- C:\Windows\assembly
2013-09-28 11:43:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-28 11:43:18 ----D---- C:\Windows\system32\en-US
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-23 16:33:23 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-23 16:33:15 ----D---- C:\Windows\system32\catroot
2013-09-23 16:33:14 ----D---- C:\Windows\system32\DriverStore
2013-09-23 16:32:00 ----D---- C:\Windows\system32\catroot2
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-22 11:05:27 ----D---- C:\ProgramData\Microsoft Help
2013-09-22 03:01:00 ----A---- C:\Windows\win.ini
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-19 12:15:48 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-14 03:50:08 ----D---- C:\Windows\rescache
2013-09-14 03:24:37 ----D---- C:\Windows\winsxs
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:19:58 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-14 03:19:58 ----D---- C:\Windows\system32\cs-CZ
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-05-12 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-05-12 413472]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119690
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s BSOD asi problém s csrss.exe
OTM nemazal. Vypnul jste antivir?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s BSOD asi problém s csrss.exe
Ano vypnul. Teda vypnul jsem všechny štíty.
Re: Problém s BSOD asi problém s csrss.exe
Tak ještě jednou....
Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-09-30 20:47:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 49 GB (21%) free of 238 GB
Total RAM: 8190 MB (81% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:47:40, on 30.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKCU\..\Run: [77Zip973867.exe] "C:\Users\Milan\AppData\Local\Temp\77Zip973867.exe" /XML="C:\Users\Milan\AppData\Local\Temp\A039.tmp" /ROS /STP=0:2
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13630 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
taskeng.exe {ACED9094-02BC-4C55-BBEE-C089157DFE17}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1389854747-413082801835734195-1754233079-658032127170212324530150897-1062482981
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f3825d84-3403-4b09-939f-c946be41b0de -SystemEventPortName:HostProcess-55c2fede-3489-45fc-b2ef-c8adaf4c2db8 -IoCancelEventPortName:HostProcess-2afff6ed-ba6f-4a46-8df0-26bbb98d4b7b -NonStateChangingEventPortName:HostProcess-a7ca4ff2-0ecd-4371-87a1-11200e7370f7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a67481e8-5993-4e8f-a54c-91af40d65400 -DeviceGroupId:WpdFsGroup
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5244.0.1649040967\1103334623" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x05e2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.2723 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="5244.1.228885497\1277094777" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5244.3.2042433642\1822451171" /prefetch:673131151
"C:\Users\Milan\Desktop\RSITx64 (1).exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
"77Zip973867.exe"=C:\Users\Milan\AppData\Local\Temp\77Zip973867.exe /XML=C:\Users\Milan\AppData\Local\Temp\A039.tmp /ROS /STP=0:2 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-29 6581488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-30 12:12:49 ----SHD---- C:\Config.Msi
2013-09-30 12:11:51 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-30 12:11:50 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-30 12:11:50 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-09-30 12:11:48 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-09-30 12:11:48 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\wksprtPS.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\wksprt.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\tsgqec.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\rdpudd.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\mstsc.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\aaclient.dll
2013-09-30 12:11:45 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-09-30 12:11:45 ----A---- C:\Windows\system32\rdpcorets.dll
2013-09-30 12:11:45 ----A---- C:\Windows\system32\mstscax.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\schannel.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\lsasrv.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-09-30 12:07:26 ----A---- C:\Windows\system32\drivers\cng.sys
2013-09-30 12:07:24 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-09-30 12:07:24 ----A---- C:\Windows\system32\qdvd.dll
2013-09-30 10:30:00 ----D---- C:\_OTM
2013-09-29 18:19:21 ----D---- C:\AdwCleaner
2013-09-29 18:15:04 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-09-29 15:08:29 ----D---- C:\Users\Milan\AppData\Roaming\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-29 15:06:06 ----D---- C:\Users\Milan\AppData\Roaming\Malwarebytes
2013-09-29 15:05:54 ----D---- C:\ProgramData\Malwarebytes
2013-09-29 15:05:53 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-29 15:05:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-09-29 15:04:02 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SYSWOW64\directx
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-17 22:22:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-17 22:22:48 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-17 22:22:48 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-17 22:22:48 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-17 22:22:46 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-17 22:22:46 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-17 22:22:44 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-17 22:22:44 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-17 22:22:42 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-17 22:22:42 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-17 22:22:42 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-17 22:22:40 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-17 22:22:40 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-17 22:22:40 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-17 22:22:38 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-17 22:22:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-17 22:22:38 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-17 22:22:38 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-17 22:22:28 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-17 22:22:26 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-09-17 22:22:26 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-12 01:17:50 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-09-30 20:46:00 ----D---- C:\Windows\Temp
2013-09-30 20:45:47 ----D---- C:\ProgramData\NVIDIA
2013-09-30 17:13:37 ----RSD---- C:\Windows\Fonts
2013-09-30 17:06:25 ----RD---- C:\Program Files (x86)
2013-09-30 17:06:25 ----D---- C:\Windows\SysWOW64
2013-09-30 17:04:05 ----D---- C:\Windows
2013-09-30 16:35:51 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-30 16:35:51 ----D---- C:\Users\Milan\AppData\Roaming\Adobe
2013-09-30 15:19:34 ----D---- C:\Windows\system32\config
2013-09-30 15:09:06 ----D---- C:\Windows\rescache
2013-09-30 12:36:20 ----D---- C:\Windows\System32
2013-09-30 12:36:20 ----D---- C:\Windows\inf
2013-09-30 12:36:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-30 12:30:32 ----D---- C:\Windows\winsxs
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-30 12:29:18 ----D---- C:\Windows\system32\wbem
2013-09-30 12:29:18 ----D---- C:\Windows\system32\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\system32\DriverStore
2013-09-30 12:29:18 ----D---- C:\Windows\system32\drivers\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\system32\drivers
2013-09-30 12:29:18 ----D---- C:\Windows\system32\cs-CZ
2013-09-30 12:29:18 ----D---- C:\Windows\PolicyDefinitions
2013-09-30 12:18:45 ----D---- C:\Windows\Microsoft.NET
2013-09-30 12:17:48 ----RSD---- C:\Windows\assembly
2013-09-30 12:16:38 ----SHD---- C:\System Volume Information
2013-09-30 12:16:34 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-30 12:15:03 ----D---- C:\Windows\system32\catroot
2013-09-30 12:14:33 ----SHD---- C:\Windows\Installer
2013-09-30 12:14:29 ----D---- C:\ProgramData\Microsoft Help
2013-09-30 12:14:22 ----A---- C:\Windows\win.ini
2013-09-30 12:11:56 ----D---- C:\Windows\system32\catroot2
2013-09-30 09:59:18 ----ASD---- C:\ProgramData\Microsoft
2013-09-29 18:20:14 ----HD---- C:\ProgramData
2013-09-29 15:08:09 ----RD---- C:\Program Files
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 19:53:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-17 22:22:56 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-09-17 22:22:56 ----A---- C:\Windows\system32\OpenCL.dll
2013-09-17 22:22:52 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-09-17 22:22:26 ----A---- C:\Windows\system32\nvapi64.dll
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
2013-09-12 09:25:43 ----A---- C:\Windows\system32\nvsvc64.dll
2013-09-12 09:25:43 ----A---- C:\Windows\system32\nvcpl.dll
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvvsvc.exe
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvshext.dll
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvmctray.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-09-12 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-09-12 414496]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 30798512]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-09-30 20:47:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 49 GB (21%) free of 238 GB
Total RAM: 8190 MB (81% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:47:40, on 30.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKCU\..\Run: [77Zip973867.exe] "C:\Users\Milan\AppData\Local\Temp\77Zip973867.exe" /XML="C:\Users\Milan\AppData\Local\Temp\A039.tmp" /ROS /STP=0:2
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13630 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
taskeng.exe {ACED9094-02BC-4C55-BBEE-C089157DFE17}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1389854747-413082801835734195-1754233079-658032127170212324530150897-1062482981
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f3825d84-3403-4b09-939f-c946be41b0de -SystemEventPortName:HostProcess-55c2fede-3489-45fc-b2ef-c8adaf4c2db8 -IoCancelEventPortName:HostProcess-2afff6ed-ba6f-4a46-8df0-26bbb98d4b7b -NonStateChangingEventPortName:HostProcess-a7ca4ff2-0ecd-4371-87a1-11200e7370f7 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a67481e8-5993-4e8f-a54c-91af40d65400 -DeviceGroupId:WpdFsGroup
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5244.0.1649040967\1103334623" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x05e2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.2723 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="5244.1.228885497\1277094777" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="5244.3.2042433642\1822451171" /prefetch:673131151
"C:\Users\Milan\Desktop\RSITx64 (1).exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
"77Zip973867.exe"=C:\Users\Milan\AppData\Local\Temp\77Zip973867.exe /XML=C:\Users\Milan\AppData\Local\Temp\A039.tmp /ROS /STP=0:2 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-29 6581488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-30 12:12:49 ----SHD---- C:\Config.Msi
2013-09-30 12:11:51 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-30 12:11:50 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-30 12:11:50 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-09-30 12:11:48 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-09-30 12:11:48 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\wksprtPS.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\wksprt.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\tsgqec.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\rdpudd.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\mstsc.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\aaclient.dll
2013-09-30 12:11:45 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-09-30 12:11:45 ----A---- C:\Windows\system32\rdpcorets.dll
2013-09-30 12:11:45 ----A---- C:\Windows\system32\mstscax.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\schannel.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\lsasrv.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-09-30 12:07:26 ----A---- C:\Windows\system32\drivers\cng.sys
2013-09-30 12:07:24 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-09-30 12:07:24 ----A---- C:\Windows\system32\qdvd.dll
2013-09-30 10:30:00 ----D---- C:\_OTM
2013-09-29 18:19:21 ----D---- C:\AdwCleaner
2013-09-29 18:15:04 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-09-29 15:08:29 ----D---- C:\Users\Milan\AppData\Roaming\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-29 15:06:06 ----D---- C:\Users\Milan\AppData\Roaming\Malwarebytes
2013-09-29 15:05:54 ----D---- C:\ProgramData\Malwarebytes
2013-09-29 15:05:53 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-29 15:05:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-09-29 15:04:02 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SYSWOW64\directx
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-17 22:22:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-17 22:22:48 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-17 22:22:48 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-17 22:22:48 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-17 22:22:46 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-17 22:22:46 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-17 22:22:44 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-17 22:22:44 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-17 22:22:42 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-17 22:22:42 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-17 22:22:42 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-17 22:22:40 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-17 22:22:40 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-17 22:22:40 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-17 22:22:38 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-17 22:22:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-17 22:22:38 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-17 22:22:38 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-17 22:22:28 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-17 22:22:26 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-09-17 22:22:26 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-12 01:17:50 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-09-30 20:46:00 ----D---- C:\Windows\Temp
2013-09-30 20:45:47 ----D---- C:\ProgramData\NVIDIA
2013-09-30 17:13:37 ----RSD---- C:\Windows\Fonts
2013-09-30 17:06:25 ----RD---- C:\Program Files (x86)
2013-09-30 17:06:25 ----D---- C:\Windows\SysWOW64
2013-09-30 17:04:05 ----D---- C:\Windows
2013-09-30 16:35:51 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-30 16:35:51 ----D---- C:\Users\Milan\AppData\Roaming\Adobe
2013-09-30 15:19:34 ----D---- C:\Windows\system32\config
2013-09-30 15:09:06 ----D---- C:\Windows\rescache
2013-09-30 12:36:20 ----D---- C:\Windows\System32
2013-09-30 12:36:20 ----D---- C:\Windows\inf
2013-09-30 12:36:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-30 12:30:32 ----D---- C:\Windows\winsxs
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-30 12:29:18 ----D---- C:\Windows\system32\wbem
2013-09-30 12:29:18 ----D---- C:\Windows\system32\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\system32\DriverStore
2013-09-30 12:29:18 ----D---- C:\Windows\system32\drivers\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\system32\drivers
2013-09-30 12:29:18 ----D---- C:\Windows\system32\cs-CZ
2013-09-30 12:29:18 ----D---- C:\Windows\PolicyDefinitions
2013-09-30 12:18:45 ----D---- C:\Windows\Microsoft.NET
2013-09-30 12:17:48 ----RSD---- C:\Windows\assembly
2013-09-30 12:16:38 ----SHD---- C:\System Volume Information
2013-09-30 12:16:34 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-30 12:15:03 ----D---- C:\Windows\system32\catroot
2013-09-30 12:14:33 ----SHD---- C:\Windows\Installer
2013-09-30 12:14:29 ----D---- C:\ProgramData\Microsoft Help
2013-09-30 12:14:22 ----A---- C:\Windows\win.ini
2013-09-30 12:11:56 ----D---- C:\Windows\system32\catroot2
2013-09-30 09:59:18 ----ASD---- C:\ProgramData\Microsoft
2013-09-29 18:20:14 ----HD---- C:\ProgramData
2013-09-29 15:08:09 ----RD---- C:\Program Files
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 19:53:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-17 22:22:56 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-09-17 22:22:56 ----A---- C:\Windows\system32\OpenCL.dll
2013-09-17 22:22:52 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-09-17 22:22:26 ----A---- C:\Windows\system32\nvapi64.dll
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
2013-09-12 09:25:43 ----A---- C:\Windows\system32\nvsvc64.dll
2013-09-12 09:25:43 ----A---- C:\Windows\system32\nvcpl.dll
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvvsvc.exe
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvshext.dll
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvmctray.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-09-12 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-09-12 414496]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 30798512]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119690
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s BSOD asi problém s csrss.exe
Je to tam stále. Zkuste to v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s BSOD asi problém s csrss.exe
Tak že by teď?
All processes killed
========== FILES ==========
File/Folder C:\Program Files (x86)\Microsoft\BingBar not found.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched not found.
========== SERVICES/DRIVERS ==========
Error: No service named BBUpdate was found to stop!
Service\Driver key BBUpdate not found.
Error: No service named BBSvc was found to stop!
Service\Driver key BBSvc not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Milan
->Temp folder emptied: 239034 bytes
->Temporary Internet Files folder emptied: 40408 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 8579645 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 8,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Milan
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 09302013_231826
Files moved on Reboot...
C:\Users\Milan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Milan\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
Registry entries deleted on Reboot...
All processes killed
========== FILES ==========
File/Folder C:\Program Files (x86)\Microsoft\BingBar not found.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched not found.
========== SERVICES/DRIVERS ==========
Error: No service named BBUpdate was found to stop!
Service\Driver key BBUpdate not found.
Error: No service named BBSvc was found to stop!
Service\Driver key BBSvc not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Milan
->Temp folder emptied: 239034 bytes
->Temporary Internet Files folder emptied: 40408 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 8579645 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 8,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Milan
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 09302013_231826
Files moved on Reboot...
C:\Users\Milan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Milan\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
Registry entries deleted on Reboot...
-
Rudy
- Site Admin
- Příspěvky: 119690
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém s BSOD asi problém s csrss.exe
Teď ano. Dejte ještě jeden log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém s BSOD asi problém s csrss.exe
Tak ještě jednou
All processes killed
========== FILES ==========
File/Folder C:\Program Files (x86)\Microsoft\BingBar not found.
File/Folder C:\Windows\tasks\GoogleUpdateTaskMachineCore.job not found.
File/Folder C:\Windows\tasks\GoogleUpdateTaskMachineUA.job not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched not found.
========== SERVICES/DRIVERS ==========
Error: No service named BBUpdate was found to stop!
Service\Driver key BBUpdate not found.
Error: No service named BBSvc was found to stop!
Service\Driver key BBSvc not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Milan
->Temp folder emptied: 2354128 bytes
->Temporary Internet Files folder emptied: 19272582 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 7251284 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 590 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1259339 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 29,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Milan
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 10032013_130215
Files moved on Reboot...
C:\Users\Milan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Milan\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
Registry entries deleted on Reboot...
All processes killed
========== FILES ==========
File/Folder C:\Program Files (x86)\Microsoft\BingBar not found.
File/Folder C:\Windows\tasks\GoogleUpdateTaskMachineCore.job not found.
File/Folder C:\Windows\tasks\GoogleUpdateTaskMachineUA.job not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched not found.
========== SERVICES/DRIVERS ==========
Error: No service named BBUpdate was found to stop!
Service\Driver key BBUpdate not found.
Error: No service named BBSvc was found to stop!
Service\Driver key BBSvc not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Milan
->Temp folder emptied: 2354128 bytes
->Temporary Internet Files folder emptied: 19272582 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 7251284 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 590 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1259339 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 29,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Milan
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 10032013_130215
Files moved on Reboot...
C:\Users\Milan\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Milan\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
Registry entries deleted on Reboot...
Re: Problém s BSOD asi problém s csrss.exe
A RSIT.....
Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-10-03 13:04:24
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 41 GB (17%) free of 238 GB
Total RAM: 8190 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:04:27, on 3.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKCU\..\Run: [77Zip973867.exe] "C:\Users\Milan\AppData\Local\Temp\77Zip973867.exe" /XML="C:\Users\Milan\AppData\Local\Temp\A039.tmp" /ROS /STP=0:2
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13767 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"taskhost.exe"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
taskeng.exe {D31AF8D4-BF05-4508-8D77-48DB15A95945}
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Explorer.EXE
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4768.0.1853548092\314582364" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x05e2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.2723 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="4768.1.201783021\1696041680" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4768.4.505457635\348990495" /prefetch:673131151
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-27098468-6196523322038235514-2923033032038933322109147124448894480-526812365
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-509381a9-381b-43fe-b972-fe58b7f74397 -SystemEventPortName:HostProcess-f6e66e72-0567-4e6b-a22b-35bb99607797 -IoCancelEventPortName:HostProcess-7b7646be-293f-4ab9-8f3b-ddd33b51ab68 -NonStateChangingEventPortName:HostProcess-6f6d9f35-588a-43f0-9df7-15e9c4396e01 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8d5c2bbf-ee23-42b7-9418-6a9ae43927e0 -DeviceGroupId:WpdFsGroup
"C:\Users\Milan\Desktop\RSITx64 (1).exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
"77Zip973867.exe"=C:\Users\Milan\AppData\Local\Temp\77Zip973867.exe /XML=C:\Users\Milan\AppData\Local\Temp\A039.tmp /ROS /STP=0:2 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-29 6581488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-03 11:57:06 ----D---- C:\Program Files (x86)\GamePark
2013-10-02 10:08:49 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-02 10:08:46 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-02 10:08:45 ----A---- C:\Windows\game.ini
2013-10-02 09:59:09 ----D---- C:\Program Files (x86)\Activision
2013-10-02 09:56:57 ----SHD---- C:\Windows\ftpcache
2013-10-01 08:47:35 ----D---- C:\Program Files (x86)\Super Castle Attack
2013-09-30 23:12:58 ----A---- C:\Windows\ntbtlog.txt
2013-09-30 12:11:51 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-30 12:11:50 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-30 12:11:50 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-09-30 12:11:48 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-09-30 12:11:48 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\wksprtPS.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\wksprt.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\tsgqec.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\rdpudd.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\mstsc.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\aaclient.dll
2013-09-30 12:11:45 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-09-30 12:11:45 ----A---- C:\Windows\system32\rdpcorets.dll
2013-09-30 12:11:45 ----A---- C:\Windows\system32\mstscax.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\schannel.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\lsasrv.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-09-30 12:07:26 ----A---- C:\Windows\system32\drivers\cng.sys
2013-09-30 12:07:24 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-09-30 12:07:24 ----A---- C:\Windows\system32\qdvd.dll
2013-09-30 10:30:00 ----D---- C:\_OTM
2013-09-29 18:19:21 ----D---- C:\AdwCleaner
2013-09-29 18:15:04 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-09-29 15:08:29 ----D---- C:\Users\Milan\AppData\Roaming\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-29 15:06:06 ----D---- C:\Users\Milan\AppData\Roaming\Malwarebytes
2013-09-29 15:05:54 ----D---- C:\ProgramData\Malwarebytes
2013-09-29 15:05:53 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-29 15:05:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-09-29 15:04:02 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SYSWOW64\directx
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-17 22:22:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-17 22:22:48 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-17 22:22:48 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-17 22:22:48 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-17 22:22:46 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-17 22:22:46 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-17 22:22:44 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-17 22:22:44 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-17 22:22:42 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-17 22:22:42 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-17 22:22:42 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-17 22:22:40 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-17 22:22:40 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-17 22:22:40 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-17 22:22:38 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-17 22:22:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-17 22:22:38 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-17 22:22:38 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-17 22:22:28 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-17 22:22:26 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-09-17 22:22:26 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-12 01:17:50 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-10-03 13:04:24 ----D---- C:\Windows\Temp
2013-10-03 13:03:19 ----D---- C:\ProgramData\NVIDIA
2013-10-03 12:59:55 ----D---- C:\Windows\system32\config
2013-10-03 11:57:06 ----RD---- C:\Program Files (x86)
2013-10-02 10:14:44 ----D---- C:\Windows\System32
2013-10-02 10:14:44 ----D---- C:\Windows\inf
2013-10-02 10:14:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-02 10:13:13 ----RSD---- C:\Windows\assembly
2013-10-02 10:11:15 ----D---- C:\Windows
2013-10-02 10:08:49 ----D---- C:\Windows\SysWOW64
2013-10-02 10:08:46 ----D---- C:\Windows\system32\LogFiles
2013-10-02 10:08:43 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-02 10:08:42 ----SHD---- C:\Windows\Installer
2013-10-02 09:57:31 ----SHD---- C:\System Volume Information
2013-09-30 23:18:26 ----D---- C:\Windows\Tasks
2013-09-30 17:13:37 ----RSD---- C:\Windows\Fonts
2013-09-30 16:35:51 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-30 16:35:51 ----D---- C:\Users\Milan\AppData\Roaming\Adobe
2013-09-30 15:09:06 ----D---- C:\Windows\rescache
2013-09-30 12:30:32 ----D---- C:\Windows\winsxs
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-30 12:29:18 ----D---- C:\Windows\system32\wbem
2013-09-30 12:29:18 ----D---- C:\Windows\system32\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\system32\DriverStore
2013-09-30 12:29:18 ----D---- C:\Windows\system32\drivers\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\system32\drivers
2013-09-30 12:29:18 ----D---- C:\Windows\system32\cs-CZ
2013-09-30 12:29:18 ----D---- C:\Windows\PolicyDefinitions
2013-09-30 12:18:45 ----D---- C:\Windows\Microsoft.NET
2013-09-30 12:16:34 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-30 12:15:03 ----D---- C:\Windows\system32\catroot
2013-09-30 12:14:29 ----D---- C:\ProgramData\Microsoft Help
2013-09-30 12:14:22 ----A---- C:\Windows\win.ini
2013-09-30 12:11:56 ----D---- C:\Windows\system32\catroot2
2013-09-30 09:59:18 ----ASD---- C:\ProgramData\Microsoft
2013-09-29 18:20:14 ----HD---- C:\ProgramData
2013-09-29 15:08:09 ----RD---- C:\Program Files
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-17 22:22:56 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-09-17 22:22:56 ----A---- C:\Windows\system32\OpenCL.dll
2013-09-17 22:22:52 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-09-17 22:22:26 ----A---- C:\Windows\system32\nvapi64.dll
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
2013-09-12 09:25:43 ----A---- C:\Windows\system32\nvsvc64.dll
2013-09-12 09:25:43 ----A---- C:\Windows\system32\nvcpl.dll
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvvsvc.exe
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvshext.dll
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvmctray.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-09-12 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-02 66872]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-09-12 414496]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 30798512]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Milan at 2013-10-03 13:04:24
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 41 GB (17%) free of 238 GB
Total RAM: 8190 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:04:27, on 3.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Milan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DigidesignMMERefresh] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
O4 - HKCU\..\Run: [77Zip973867.exe] "C:\Users\Milan\AppData\Local\Temp\77Zip973867.exe" /XML="C:\Users\Milan\AppData\Local\Temp\A039.tmp" /ROS /STP=0:2
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-250637043-1945295980-3644325594-1058\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Digidesign MME Refresh Service (DigiRefresh) - Avid Technology, Inc. - C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NIHardwareService - Native Instruments GmbH - C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PACE License Services (PaceLicenseDServices) - PACE Anti-Piracy, Inc. - C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: SymSnapService - Unknown owner - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13767 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe" -s
"taskhost.exe"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
taskeng.exe {D31AF8D4-BF05-4508-8D77-48DB15A95945}
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Explorer.EXE
"C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"
"C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
"C:\Windows\system32\rundll32.exe" Shell32.dll,Control_RunDLL mmsys.cpl
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrobat_sl.exe"
"C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4768.0.1853548092\314582364" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x05e2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.2723 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="4768.1.201783021\1696041680" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-1-Percent/group_88/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_07/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4768.4.505457635\348990495" /prefetch:673131151
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-27098468-6196523322038235514-2923033032038933322109147124448894480-526812365
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-509381a9-381b-43fe-b972-fe58b7f74397 -SystemEventPortName:HostProcess-f6e66e72-0567-4e6b-a22b-35bb99607797 -IoCancelEventPortName:HostProcess-7b7646be-293f-4ab9-8f3b-ddd33b51ab68 -NonStateChangingEventPortName:HostProcess-6f6d9f35-588a-43f0-9df7-15e9c4396e01 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8d5c2bbf-ee23-42b7-9418-6a9ae43927e0 -DeviceGroupId:WpdFsGroup
"C:\Users\Milan\Desktop\RSITx64 (1).exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19 164496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-10 343632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DCAB3893B6BBBE4638C15547A398CFE19ECBC767._service_run"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2013-09-17 829392]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-04-05 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-04-05 59720]
"com.apple.dav.bookmarks.daemon"=C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe [2013-04-05 59720]
"77Zip973867.exe"=C:\Users\Milan\AppData\Local\Temp\77Zip973867.exe /XML=C:\Users\Milan\AppData\Local\Temp\A039.tmp /ROS /STP=0:2 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-06-27 20097696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-09-29 6581488]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
""= []
"Adobe Acrobat Speed Launcher"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [2013-05-10 38984]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2013-05-10 840768]
"RUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888]
"DigidesignMMERefresh"=C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-08-16 152392]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-03-09 6669000]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-03-09 4171464]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-03 11:57:06 ----D---- C:\Program Files (x86)\GamePark
2013-10-02 10:08:49 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-02 10:08:46 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-02 10:08:45 ----A---- C:\Windows\game.ini
2013-10-02 09:59:09 ----D---- C:\Program Files (x86)\Activision
2013-10-02 09:56:57 ----SHD---- C:\Windows\ftpcache
2013-10-01 08:47:35 ----D---- C:\Program Files (x86)\Super Castle Attack
2013-09-30 23:12:58 ----A---- C:\Windows\ntbtlog.txt
2013-09-30 12:11:51 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-30 12:11:50 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-30 12:11:50 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-09-30 12:11:48 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-09-30 12:11:48 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-09-30 12:11:46 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\wksprtPS.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\wksprt.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\tsgqec.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\rdpudd.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\mstsc.exe
2013-09-30 12:11:46 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-09-30 12:11:46 ----A---- C:\Windows\system32\aaclient.dll
2013-09-30 12:11:45 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-09-30 12:11:45 ----A---- C:\Windows\system32\rdpcorets.dll
2013-09-30 12:11:45 ----A---- C:\Windows\system32\mstscax.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-09-30 12:07:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\schannel.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\lsasrv.dll
2013-09-30 12:07:26 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-09-30 12:07:26 ----A---- C:\Windows\system32\drivers\cng.sys
2013-09-30 12:07:24 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-09-30 12:07:24 ----A---- C:\Windows\system32\qdvd.dll
2013-09-30 10:30:00 ----D---- C:\_OTM
2013-09-29 18:19:21 ----D---- C:\AdwCleaner
2013-09-29 18:15:04 ----D---- C:\Program Files (x86)\Amnesia - The Dark Descent
2013-09-29 15:08:29 ----D---- C:\Users\Milan\AppData\Roaming\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-09-29 15:08:09 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-29 15:06:06 ----D---- C:\Users\Milan\AppData\Roaming\Malwarebytes
2013-09-29 15:05:54 ----D---- C:\ProgramData\Malwarebytes
2013-09-29 15:05:53 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-29 15:05:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-09-29 15:04:02 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 15:03:49 ----D---- C:\Windows\SYSWOW64\directx
2013-09-29 14:44:21 ----D---- C:\rsit
2013-09-29 14:44:21 ----D---- C:\Program Files\trend micro
2013-09-29 14:24:48 ----D---- C:\ProgramData\WindowsPerformanceRecorder
2013-09-28 19:49:25 ----D---- C:\Program Files (x86)\LooksBuilder
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 12:33:03 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 12:33:02 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 12:32:45 ----A---- C:\Windows\avastSS.scr
2013-09-28 11:52:47 ----D---- C:\ProgramData\Windows App Certification Kit
2013-09-28 11:52:27 ----D---- C:\Program Files (x86)\Microsoft SDKs
2013-09-28 11:52:22 ----D---- C:\Program Files\Application Verifier
2013-09-28 11:52:22 ----D---- C:\Program Files (x86)\Application Verifier
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Windows Kits
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-09-23 16:31:24 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-09-23 15:52:52 ----A---- C:\Windows\d3dx9_27.dll
2013-09-23 14:14:27 ----D---- C:\ProgramData\Firefly Studios
2013-09-23 14:06:42 ----D---- C:\ProgramData\Astroburn Lite
2013-09-23 14:06:42 ----D---- C:\Program Files (x86)\Astroburn Lite
2013-09-23 13:43:00 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispgenco6432723.dll
2013-09-21 17:47:26 ----A---- C:\Windows\system32\nvdispco6432723.dll
2013-09-21 14:01:48 ----ASH---- C:\pagefile.sys
2013-09-21 14:00:29 ----D---- C:\Windows\Minidump
2013-09-19 15:21:24 ----D---- C:\Program Files (x86)\Firefly Studios
2013-09-19 14:04:08 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2013-09-19 14:04:08 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2013-09-19 14:02:01 ----D---- C:\NvidiaLogging
2013-09-19 14:01:22 ----D---- C:\Program Files (x86)\AGEIA Technologies
2013-09-19 14:00:02 ----A---- C:\Windows\system32\nvsvcr.dll
2013-09-19 13:58:40 ----D---- C:\Windows\Sun
2013-09-19 13:58:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispgenco6432680.dll
2013-09-19 13:58:19 ----A---- C:\Windows\system32\nvdispco6432680.dll
2013-09-19 13:57:50 ----D---- C:\ProgramData\Oracle
2013-09-19 13:56:30 ----D---- C:\ProgramData\Sun
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-09-19 13:56:28 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-09-19 13:56:23 ----A---- C:\Windows\SYSWOW64\java.exe
2013-09-19 13:56:14 ----D---- C:\Program Files (x86)\Java
2013-09-19 12:12:56 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-19 11:16:11 ----D---- C:\ProgramData\Steam
2013-09-19 11:16:11 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-19 11:15:52 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-19 11:15:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-19 11:15:50 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-19 11:15:49 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-19 11:15:48 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-19 11:15:47 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-19 09:54:26 ----D---- C:\Games
2013-09-17 22:22:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-17 22:22:48 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-09-17 22:22:48 ----A---- C:\Windows\system32\nvopencl.dll
2013-09-17 22:22:48 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-17 22:22:46 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-17 22:22:46 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-17 22:22:44 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-09-17 22:22:44 ----A---- C:\Windows\system32\NvIFR64.dll
2013-09-17 22:22:42 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-09-17 22:22:42 ----A---- C:\Windows\system32\NvFBC64.dll
2013-09-17 22:22:42 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-17 22:22:40 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-17 22:22:40 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-17 22:22:40 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-17 22:22:38 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-17 22:22:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-17 22:22:38 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-17 22:22:38 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-17 22:22:28 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-17 22:22:26 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-09-17 22:22:26 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-14 03:04:20 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-14 03:04:19 ----A---- C:\Windows\system32\ieui.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-14 03:04:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iesetup.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\iernonce.dll
2013-09-14 03:04:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-14 03:04:17 ----A---- C:\Windows\system32\iertutil.dll
2013-09-14 03:04:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-14 03:04:15 ----A---- C:\Windows\system32\jscript.dll
2013-09-14 03:04:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-14 03:04:14 ----A---- C:\Windows\system32\jscript9.dll
2013-09-14 03:04:13 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-14 03:04:13 ----A---- C:\Windows\system32\urlmon.dll
2013-09-14 03:04:12 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-14 03:04:11 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-14 03:04:11 ----A---- C:\Windows\system32\wininet.dll
2013-09-14 03:04:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-14 03:04:09 ----A---- C:\Windows\system32\ieframe.dll
2013-09-14 03:04:07 ----A---- C:\Windows\system32\mshtml.dll
2013-09-14 03:04:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-13 14:04:43 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-13 14:04:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\wow64.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-13 14:04:39 ----A---- C:\Windows\system32\ntdll.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-13 14:04:39 ----A---- C:\Windows\system32\kernel32.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:38 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64win.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\winsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\smss.exe
2013-09-13 14:04:38 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-13 14:04:38 ----A---- C:\Windows\system32\conhost.exe
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-13 14:04:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-13 14:04:36 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-13 14:04:36 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-13 14:04:36 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-13 14:04:35 ----A---- C:\Windows\system32\win32k.sys
2013-09-13 14:04:32 ----A---- C:\Windows\system32\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-13 14:04:31 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-13 14:04:31 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-12 01:17:50 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-09-05 16:50:20 ----D---- C:\Program Files (x86)\Crack do Call of Duty 4 Modern Warfare
2013-09-05 16:43:09 ----D---- C:\Program Files (x86)\Left 4 Dead 2 mod aliens-zombi
2013-09-05 16:36:56 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
======List of files/folders modified in the last 1 month======
2013-10-03 13:04:24 ----D---- C:\Windows\Temp
2013-10-03 13:03:19 ----D---- C:\ProgramData\NVIDIA
2013-10-03 12:59:55 ----D---- C:\Windows\system32\config
2013-10-03 11:57:06 ----RD---- C:\Program Files (x86)
2013-10-02 10:14:44 ----D---- C:\Windows\System32
2013-10-02 10:14:44 ----D---- C:\Windows\inf
2013-10-02 10:14:44 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-02 10:13:13 ----RSD---- C:\Windows\assembly
2013-10-02 10:11:15 ----D---- C:\Windows
2013-10-02 10:08:49 ----D---- C:\Windows\SysWOW64
2013-10-02 10:08:46 ----D---- C:\Windows\system32\LogFiles
2013-10-02 10:08:43 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-02 10:08:42 ----SHD---- C:\Windows\Installer
2013-10-02 09:57:31 ----SHD---- C:\System Volume Information
2013-09-30 23:18:26 ----D---- C:\Windows\Tasks
2013-09-30 17:13:37 ----RSD---- C:\Windows\Fonts
2013-09-30 16:35:51 ----SD---- C:\Users\Milan\AppData\Roaming\Microsoft
2013-09-30 16:35:51 ----D---- C:\Users\Milan\AppData\Roaming\Adobe
2013-09-30 15:09:06 ----D---- C:\Windows\rescache
2013-09-30 12:30:32 ----D---- C:\Windows\winsxs
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-30 12:29:18 ----D---- C:\Windows\system32\wbem
2013-09-30 12:29:18 ----D---- C:\Windows\system32\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\system32\DriverStore
2013-09-30 12:29:18 ----D---- C:\Windows\system32\drivers\en-US
2013-09-30 12:29:18 ----D---- C:\Windows\system32\drivers
2013-09-30 12:29:18 ----D---- C:\Windows\system32\cs-CZ
2013-09-30 12:29:18 ----D---- C:\Windows\PolicyDefinitions
2013-09-30 12:18:45 ----D---- C:\Windows\Microsoft.NET
2013-09-30 12:16:34 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-30 12:15:03 ----D---- C:\Windows\system32\catroot
2013-09-30 12:14:29 ----D---- C:\ProgramData\Microsoft Help
2013-09-30 12:14:22 ----A---- C:\Windows\win.ini
2013-09-30 12:11:56 ----D---- C:\Windows\system32\catroot2
2013-09-30 09:59:18 ----ASD---- C:\ProgramData\Microsoft
2013-09-29 18:20:14 ----HD---- C:\ProgramData
2013-09-29 15:08:09 ----RD---- C:\Program Files
2013-09-29 03:07:38 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-28 20:17:44 ----D---- C:\Users\Milan\AppData\Roaming\uTorrent
2013-09-28 17:58:54 ----D---- C:\Users\Milan\AppData\Roaming\HD Tune Pro
2013-09-28 17:49:53 ----D---- C:\Windows\Logs
2013-09-28 12:33:02 ----D---- C:\Windows\system32\Tasks
2013-09-28 12:32:30 ----D---- C:\ProgramData\AVAST Software
2013-09-28 12:32:30 ----D---- C:\Program Files\AVAST Software
2013-09-28 12:30:25 ----D---- C:\Windows\debug
2013-09-28 11:51:20 ----D---- C:\Program Files (x86)\Common Files
2013-09-28 11:51:12 ----D---- C:\ProgramData\Package Cache
2013-09-25 14:46:38 ----D---- C:\Program Files (x86)\Electronic Arts
2013-09-25 14:38:31 ----D---- C:\Program Files (x86)\Origin
2013-09-23 14:04:38 ----D---- C:\Users\Milan\AppData\Roaming\vlc
2013-09-21 14:12:15 ----D---- C:\Windows\system32\wdi
2013-09-19 14:01:25 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-17 22:22:56 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-09-17 22:22:56 ----A---- C:\Windows\system32\OpenCL.dll
2013-09-17 22:22:52 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-09-17 22:22:26 ----A---- C:\Windows\system32\nvapi64.dll
2013-09-14 03:19:59 ----D---- C:\Windows\AppPatch
2013-09-14 03:19:59 ----D---- C:\Program Files\Internet Explorer
2013-09-14 03:19:59 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-14 03:04:03 ----D---- C:\Windows\system32\MRT
2013-09-14 03:02:10 ----A---- C:\Windows\system32\MRT.exe
2013-09-12 09:25:43 ----A---- C:\Windows\system32\nvsvc64.dll
2013-09-12 09:25:43 ----A---- C:\Windows\system32\nvcpl.dll
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvvsvc.exe
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvshext.dll
2013-09-12 09:25:40 ----A---- C:\Windows\system32\nvmctray.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 ambakdrv;ambakdrv; C:\Windows\system32\ambakdrv.sys [2013-02-06 30648]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 mv91cons;Marvell 91xx Config Device Driver; C:\Windows\system32\DRIVERS\mv91cons.sys [2012-06-07 28008]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Tpkd;Tpkd; C:\Windows\system32\drivers\Tpkd.sys [2012-11-17 105624]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-03-27 283200]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 ammntdrv;ammntdrv; \??\C:\Windows\system32\ammntdrv.sys [2013-02-06 151480]
R2 amwrtdrv;amwrtdrv; \??\C:\Windows\system32\amwrtdrv.sys [2013-02-06 17848]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R2 Sentinel64;Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [2007-04-27 142120]
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-08-20 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-03-15 102912]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-03-15 220672]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S1 Aspi32;Aspi32; C:\Windows\system32\drivers\Aspi32.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2009-07-14 17664]
S3 CLNUIDriver;CLNUIDriver; C:\Windows\system32\DRIVERS\CLNUIDriver.sys [2010-12-11 30016]
S3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys [2010-02-12 66608]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 KinectCamera;Kinect for Windows Camera Driver; C:\Windows\System32\Drivers\kinectcamera.sys [2013-02-27 192512]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2009-07-14 56448]
S3 psdrv3;PrimeSense Sensor Device Driver Service v3.x; C:\Windows\System32\Drivers\psdrv3.sys [2013-05-29 24968]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 WinUsb;Kinect for Windows Audio Array Control Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-05-04 72704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DigiRefresh;Digidesign MME Refresh Service; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [2010-05-04 77824]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 KinectManagement;Kinect Management; C:\Program Files\Microsoft Kinect Drivers\Service\KinectManagementService.exe [2013-02-27 98816]
R2 mi-raysat_3dsmax8;RaySat_3dsmax8 Server; C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [2005-09-21 65536]
R2 NIHardwareService;NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [2009-07-17 4948992]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-08-27 14997280]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-09-12 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-08-27 2155296]
R2 PaceLicenseDServices;PACE License Services; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2012-11-19 2928128]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-02 66872]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-09-12 414496]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-08-16 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2013-06-15 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-05 116648]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-03-09 30798512]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe []
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-06-15 119808]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-03-05 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
-----------------EOF-----------------
Přispějete na provoz fóra?