Dobrý den, mám tu docela závažný problém! Když si zapnu MC a nebo jinou hru tak za cca. 10 minut mě spadne a zobrazí se modrá smrt. nevím co s tím.
LOG:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Filip at 2013-10-20 16:03:34
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 73 GB (38%) free of 191 GB
Total RAM: 4095 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:03:39, on 20.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Filip.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?affID=121631 ... 248CA866DD
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (file missing)
R3 - URLSearchHook: BS Player ControlBar Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll (file missing)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: BS Player ControlBar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (file missing)
O3 - Toolbar: BS Player ControlBar Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Touchpad Server.lnk = C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRECentral - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11247 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"taskhost.exe"
taskeng.exe {2D55A87D-231E-4D73-BEA8-2D0352F6C396}
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2560
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4028.0.1587641150\1057197314" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,18,24,26 --gpu-vendor-id=0x1002 --gpu-device-id=0x683f --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_64/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="4028.1.1897720923\821222037" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_64/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4028.2.366871472\1906121728" /prefetch:673131151
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/PasswordManagerOtherPossibleUsernames/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_05/UMA-Uniformity-Trial-1-Percent/group_64/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4028.14.940698425\1466712371" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Users\Filip\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-10-09 6270336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}]
Rich Media Downloader - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
BS Player ControlBar Toolbar - C:\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll [2013-10-01 226592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
{D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll []
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - BS Player ControlBar Toolbar - C:\Program Files (x86)\BS_Player_ControlBar\prxtbBS_P.dll [2013-10-01 226592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-10-25 5299320]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2010-10-29 5915480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Overwolf]
C:\Program Files (x86)\Overwolf\Overwolf.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-10-09 1813928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Driver Genius"= []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Touchpad Server.lnk - C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-20 16:03:35 ----D---- C:\Program Files\trend micro
2013-10-20 16:03:34 ----D---- C:\rsit
2013-10-20 11:43:41 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-20 11:23:31 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-10-20 10:13:00 ----D---- C:\Program Files (x86)\FinalWire
2013-10-20 10:08:55 ----D---- C:\Program Files (x86)\MyPC Backup
2013-10-20 10:08:50 ----D---- C:\Users\Filip\AppData\Roaming\Babylon
2013-10-20 10:08:49 ----D---- C:\Users\Filip\AppData\Roaming\SpeedAnalysis3
2013-10-20 10:08:47 ----D---- C:\Users\Filip\AppData\Roaming\zulagames
2013-10-20 10:08:47 ----D---- C:\Users\Filip\AppData\Roaming\File Scout
2013-10-20 10:08:47 ----D---- C:\ProgramData\IBUpdaterService
2013-10-12 21:45:18 ----D---- C:\Program Files (x86)\VideoLAN
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer Pro
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer
2013-10-12 21:37:50 ----D---- C:\Program Files (x86)\Webteh
2013-10-12 21:37:48 ----D---- C:\Program Files (x86)\Conduit
2013-10-12 21:37:46 ----D---- C:\ProgramData\Conduit
2013-10-12 21:37:45 ----D---- C:\Program Files (x86)\BS_Player_ControlBar
2013-10-12 21:19:31 ----D---- C:\Windows\Minidump
2013-10-12 20:53:19 ----D---- C:\Program Files (x86)\TeamViewer
2013-10-12 14:22:43 ----D---- C:\ProgramData\ATI
2013-10-12 14:22:39 ----D---- C:\Program Files (x86)\AMD AVT
2013-10-12 14:18:20 ----D---- C:\Program Files (x86)\ATI Technologies
2013-10-12 14:11:01 ----D---- C:\Program Files\ATI Technologies
2013-10-12 14:10:57 ----D---- C:\Program Files\ATI
2013-10-12 14:09:45 ----D---- C:\AMD
2013-10-11 23:20:01 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-11 22:03:31 ----D---- C:\Windows\Driver Cache
2013-10-11 22:03:31 ----A---- C:\Windows\system32\drivers\AVer330C875.sys
2013-10-11 22:02:17 ----D---- C:\Program Files (x86)\AVerMedia
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-11 20:37:31 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\tsgqec.dll
2013-10-11 20:37:21 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\wksprt.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpudd.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpcorets.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\aaclient.dll
2013-10-11 20:37:19 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-10-11 20:37:19 ----A---- C:\Windows\system32\mstscax.dll
2013-10-11 20:36:33 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-10-11 20:36:33 ----A---- C:\Windows\system32\qdvd.dll
2013-10-11 20:36:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\lsasrv.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\cng.sys
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-10-09 23:27:20 ----D---- C:\Program Files (x86)\Colin McRae Rally 2
2013-10-09 21:10:52 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 21:10:52 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 21:10:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 21:10:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 21:10:48 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 21:10:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 21:10:46 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 21:10:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 21:10:45 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 21:10:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 21:10:44 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 21:10:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 21:10:43 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 21:10:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 21:10:40 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 21:10:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 21:10:37 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 21:10:36 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 21:10:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 15:35:36 ----D---- C:\Program Files (x86)\Codemasters
2013-10-09 15:35:35 ----A---- C:\Windows\SYSWOW64\MSOSS.DLL
2013-10-09 14:35:10 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 14:35:10 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 14:35:04 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 14:35:02 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 14:35:01 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 14:35:00 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 14:34:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 14:34:56 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 14:34:55 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 14:34:54 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 14:34:45 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:45 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 14:34:43 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-03 23:50:13 ----A---- C:\error.txt
2013-10-03 23:14:58 ----D---- C:\ProgramData\Package Cache
2013-10-02 19:27:31 ----D---- C:\ProgramData\LogMeIn
2013-10-02 19:26:31 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-27 16:04:11 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-27 16:03:54 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-09-27 16:02:51 ----D---- C:\ProgramData\PMB Files
2013-09-27 16:02:47 ----D---- C:\Program Files (x86)\Pando Networks
2013-09-27 16:02:20 ----D---- C:\Users\Filip\AppData\Roaming\Riot Games
2013-09-22 15:01:35 ----D---- C:\FTB
2013-09-22 15:00:12 ----D---- C:\Users\Filip\AppData\Roaming\ftblauncher
======List of files/folders modified in the last 1 month======
2013-10-20 16:03:36 ----D---- C:\Windows\Temp
2013-10-20 16:03:35 ----RD---- C:\Program Files
2013-10-20 15:53:20 ----D---- C:\Windows\system32\config
2013-10-20 15:52:08 ----D---- C:\Users\Filip\AppData\Roaming\TS3Client
2013-10-20 15:48:15 ----D---- C:\Windows
2013-10-20 15:47:55 ----D---- C:\Program Files (x86)\Origin
2013-10-20 15:24:02 ----SHD---- C:\System Volume Information
2013-10-20 15:22:26 ----D---- C:\Users\Filip\AppData\Roaming\.minecraft
2013-10-20 15:01:22 ----D---- C:\Program Files (x86)\Steam
2013-10-20 14:13:23 ----D---- C:\Windows\SysWOW64
2013-10-20 12:03:42 ----RD---- C:\Program Files (x86)
2013-10-20 11:46:38 ----D---- C:\Windows\System32
2013-10-20 11:43:40 ----D---- C:\Windows\system32\drivers
2013-10-20 11:30:49 ----D---- C:\Windows\system32\NDF
2013-10-20 11:26:55 ----SHD---- C:\Windows\Installer
2013-10-20 11:26:55 ----SHD---- C:\Config.Msi
2013-10-20 11:26:14 ----D---- C:\Windows\system32\DriverStore
2013-10-20 11:26:14 ----D---- C:\Windows\system32\catroot
2013-10-20 11:26:13 ----D---- C:\Windows\inf
2013-10-20 11:24:32 ----D---- C:\Windows\system32\Tasks
2013-10-20 11:19:31 ----D---- C:\ProgramData\DriverGenius
2013-10-20 11:09:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-20 10:20:32 ----D---- C:\Users\Filip\AppData\Roaming\uTorrent
2013-10-20 10:08:50 ----D---- C:\Users\Filip\AppData\Roaming\Mozilla
2013-10-20 10:08:47 ----HD---- C:\ProgramData
2013-10-20 10:08:15 ----D---- C:\Windows\Prefetch
2013-10-19 15:33:09 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2013-10-19 10:53:54 ----RSD---- C:\Windows\assembly
2013-10-19 10:52:35 ----D---- C:\Windows\Logs
2013-10-18 22:54:42 ----D---- C:\Program Files (x86)\Origin Games
2013-10-18 22:35:50 ----D---- C:\Windows\system32\catroot2
2013-10-14 16:01:45 ----RD---- C:\Program Files (x86)\Skype
2013-10-13 17:38:00 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-13 10:27:41 ----D---- C:\Users\Filip\AppData\Roaming\vlc
2013-10-13 10:27:15 ----SHD---- C:\$Recycle.Bin
2013-10-13 10:15:15 ----D---- C:\Windows\Panther
2013-10-13 10:15:05 ----D---- C:\Windows\debug
2013-10-12 21:59:15 ----D---- C:\ProgramData\Skype
2013-10-12 20:53:30 ----RSD---- C:\Windows\Fonts
2013-10-12 14:55:57 ----D---- C:\Windows\Microsoft.NET
2013-10-12 14:22:40 ----D---- C:\ProgramData\AMD
2013-10-12 14:22:33 ----D---- C:\Program Files (x86)\Common Files
2013-10-12 14:17:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-12 14:16:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-12 14:16:52 ----D---- C:\Windows\system32\cs-CZ
2013-10-12 14:13:12 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-12 14:13:12 ----D---- C:\Windows\system32\en-US
2013-10-12 11:00:01 ----D---- C:\Windows\rescache
2013-10-11 22:05:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-11 21:54:28 ----HD---- C:\Program Files (x86)\Temp
2013-10-11 20:42:00 ----D---- C:\Windows\winsxs
2013-10-11 20:38:29 ----D---- C:\Windows\SYSWOW64\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\drivers\en-US
2013-10-11 20:38:29 ----D---- C:\Windows\PolicyDefinitions
2013-10-09 23:09:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-09 23:09:45 ----D---- C:\Program Files\Internet Explorer
2013-10-09 23:09:42 ----D---- C:\Windows\AppPatch
2013-10-09 23:07:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-09 23:07:42 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 21:13:17 ----D---- C:\ProgramData\Microsoft Help
2013-10-09 21:05:46 ----D---- C:\Windows\system32\MRT
2013-10-09 21:05:43 ----A---- C:\Windows\system32\MRT.exe
2013-10-05 16:08:19 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-04 00:28:42 ----D---- C:\ProgramData\Origin
2013-10-01 14:37:57 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-30 17:41:03 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-09-28 17:30:39 ----D---- C:\FFOutput
2013-09-28 17:28:09 ----D---- C:\ProgramData\YTD Video Downloader
2013-09-27 16:03:55 ----D---- C:\Windows\Tasks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2010-04-09 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-02 283200]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2013-05-13 76464]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-03-04 349416]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2013-05-13 50864]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-10-22 2206864]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
S3 AVer330C875;AVer330C875; C:\Windows\system32\DRIVERS\AVer330C875.sys [2013-08-26 1520128]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1; C:\Windows\system32\DRIVERS\libusb0.sys [2010-10-02 43456]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 LVUVC64;Logitech Webcam C210(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pspdisp;pspdisp; C:\Windows\system32\DRIVERS\pspdisp_x64.sys [2011-01-18 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 ScreamBAudioSvc;ScreamBee Audio; C:\Windows\system32\drivers\ScreamingBAudio64.sys [2009-11-26 38992]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2012-03-19 1454896]
S3 WinUSB;WinUSB driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 AVerRECentral;AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [2013-08-15 369152]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-13 76888]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 146272]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-10-22 27768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-09 565672]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-12 257416]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-01 2746704]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Hraní her a pak Modrá Smrt!
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hraní her a pak Modrá Smrt!
Zdravím!
Nemáte v PC neco přetaktováno? Spusťte nejprve tuto utilitu:
Nemáte v PC neco přetaktováno? Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hraní her a pak Modrá Smrt!
Dobrý den, tohle my to napsalo
# AdwCleaner v3.009 - Report created 20/10/2013 at 17:13:25
# Updated 19/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Filip - FILIP-PC
# Running from : C:\Users\Filip\Desktop\Nová složka\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\ProgramData\IBUpdaterService
Folder Deleted : C:\ProgramData\SoftSafe
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\driver-soft
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\RegClean Pro
Folder Deleted : C:\Program Files (x86)\BS_Player_ControlBar
Folder Deleted : C:\Users\Filip\AppData\Local\Conduit
Folder Deleted : C:\Users\Filip\AppData\Local\PutLockerDownloader
Folder Deleted : C:\Users\Filip\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Filip\AppData\LocalLow\tuvaro
Folder Deleted : C:\Users\Filip\AppData\LocalLow\BS_Player_ControlBar
Folder Deleted : C:\Users\Filip\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Filip\AppData\Roaming\file scout
Folder Deleted : C:\Users\Filip\AppData\Roaming\SpeedAnalysis3
Folder Deleted : C:\Users\Filip\AppData\Roaming\zulagames
Folder Deleted : C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com
Folder Deleted : C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn
File Deleted : C:\END
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\Filip\AppData\Roaming\speedanalysis.ico
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\FTDownloader
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKLM\SOFTWARE\5a55d8d9b23db815
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bandicam_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bandicam_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_dosbox_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_dosbox_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{055DD326-956C-4827-9467-A172509E81B3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CB02877-EFBC-4317-B608-9E24B11BAB40}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F001652-AF51-45C6-B029-86E0265A1851}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{055DD326-956C-4827-9467-A172509E81B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7E6E6136-B9AB-4F4C-90AE-8B8CF04A23E2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D102E9D1-0B12-4A50-B570-1C6860429FEA}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\DataMngr
[#] Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\PIP
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\BS_Player_ControlBar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 3
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
-\\ Google Chrome v30.0.1599.101
[ File : C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted : icon_url
Deleted : search_url
Deleted : suggest_url
*************************
AdwCleaner[R0].txt - [1796 octets] - [20/10/2013 17:12:09]
AdwCleaner[R1].txt - [11233 octets] - [20/10/2013 17:12:52]
AdwCleaner[S0].txt - [10501 octets] - [20/10/2013 17:13:25]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10562 octets] ##########
Všechno je v původním stavu, nic přetaktovaného nebylo!
# AdwCleaner v3.009 - Report created 20/10/2013 at 17:13:25
# Updated 19/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Filip - FILIP-PC
# Running from : C:\Users\Filip\Desktop\Nová složka\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\ProgramData\IBUpdaterService
Folder Deleted : C:\ProgramData\SoftSafe
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\driver-soft
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\RegClean Pro
Folder Deleted : C:\Program Files (x86)\BS_Player_ControlBar
Folder Deleted : C:\Users\Filip\AppData\Local\Conduit
Folder Deleted : C:\Users\Filip\AppData\Local\PutLockerDownloader
Folder Deleted : C:\Users\Filip\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Filip\AppData\LocalLow\tuvaro
Folder Deleted : C:\Users\Filip\AppData\LocalLow\BS_Player_ControlBar
Folder Deleted : C:\Users\Filip\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Filip\AppData\Roaming\file scout
Folder Deleted : C:\Users\Filip\AppData\Roaming\SpeedAnalysis3
Folder Deleted : C:\Users\Filip\AppData\Roaming\zulagames
Folder Deleted : C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTDownloader.com
Folder Deleted : C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn
File Deleted : C:\END
File Deleted : C:\Windows\System32\roboot64.exe
File Deleted : C:\Users\Filip\AppData\Roaming\speedanalysis.ico
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mbmpjbkgemhgalmeiigcdljkccfcafoj
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\FTDownloader
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Key Deleted : HKLM\SOFTWARE\5a55d8d9b23db815
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bandicam_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_bandicam_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_dosbox_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_para_dosbox_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{055DD326-956C-4827-9467-A172509E81B3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CB02877-EFBC-4317-B608-9E24B11BAB40}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F001652-AF51-45C6-B029-86E0265A1851}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{055DD326-956C-4827-9467-A172509E81B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7E6E6136-B9AB-4F4C-90AE-8B8CF04A23E2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D102E9D1-0B12-4A50-B570-1C6860429FEA}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\DataMngr
[#] Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\filescout
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\PIP
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\BS_Player_ControlBar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Speed Analysis 3
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
-\\ Google Chrome v30.0.1599.101
[ File : C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted : icon_url
Deleted : search_url
Deleted : suggest_url
*************************
AdwCleaner[R0].txt - [1796 octets] - [20/10/2013 17:12:09]
AdwCleaner[R1].txt - [11233 octets] - [20/10/2013 17:12:52]
AdwCleaner[S0].txt - [10501 octets] - [20/10/2013 17:13:25]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10562 octets] ##########
Všechno je v původním stavu, nic přetaktovaného nebylo!
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hraní her a pak Modrá Smrt!
1. Dejte nový log RSIT.
2. Otevřte adresář c:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu.
2. Otevřte adresář c:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hraní her a pak Modrá Smrt!
Zde je ten LOG.
- Přílohy
-
- 102013-17550-01.rar
- (27.52 KiB) Staženo 45 x
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hraní her a pak Modrá Smrt!
Jedná se o chybu DirectX. Zkuste přeinstalovat novější verzí. Také ovšem může jít o hardwarovou chybu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hraní her a pak Modrá Smrt!
Zde je nový log
Logfile of random's system information tool 1.09 (written by random/random)
Run by Filip at 2013-10-20 18:18:57
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 73 GB (38%) free of 191 GB
Total RAM: 4095 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:19:02, on 20.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\trend micro\Filip.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll (file missing)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Touchpad Server.lnk = C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRECentral - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9703 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"taskhost.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {371235EA-5762-4B4C-A8FC-3FFBF4E0EE3D}
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
WLIDSvcM.exe 2668
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Filip\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}]
Rich Media Downloader - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-10-25 5299320]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2010-10-29 5915480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Overwolf]
C:\Program Files (x86)\Overwolf\Overwolf.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-10-09 1813928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Driver Genius"= []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Touchpad Server.lnk - C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-20 17:12:00 ----D---- C:\AdwCleaner
2013-10-20 16:03:35 ----D---- C:\Program Files\trend micro
2013-10-20 16:03:34 ----D---- C:\rsit
2013-10-20 11:43:41 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-20 11:23:31 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-10-20 10:13:00 ----D---- C:\Program Files (x86)\FinalWire
2013-10-12 21:45:18 ----D---- C:\Program Files (x86)\VideoLAN
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer Pro
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer
2013-10-12 21:37:50 ----D---- C:\Program Files (x86)\Webteh
2013-10-12 21:19:31 ----D---- C:\Windows\Minidump
2013-10-12 20:53:19 ----D---- C:\Program Files (x86)\TeamViewer
2013-10-12 14:22:43 ----D---- C:\ProgramData\ATI
2013-10-12 14:22:39 ----D---- C:\Program Files (x86)\AMD AVT
2013-10-12 14:18:20 ----D---- C:\Program Files (x86)\ATI Technologies
2013-10-12 14:11:01 ----D---- C:\Program Files\ATI Technologies
2013-10-12 14:10:57 ----D---- C:\Program Files\ATI
2013-10-12 14:09:45 ----D---- C:\AMD
2013-10-11 23:20:01 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-11 22:03:31 ----D---- C:\Windows\Driver Cache
2013-10-11 22:03:31 ----A---- C:\Windows\system32\drivers\AVer330C875.sys
2013-10-11 22:02:17 ----D---- C:\Program Files (x86)\AVerMedia
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-11 20:37:31 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\tsgqec.dll
2013-10-11 20:37:21 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\wksprt.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpudd.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpcorets.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\aaclient.dll
2013-10-11 20:37:19 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-10-11 20:37:19 ----A---- C:\Windows\system32\mstscax.dll
2013-10-11 20:36:33 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-10-11 20:36:33 ----A---- C:\Windows\system32\qdvd.dll
2013-10-11 20:36:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\lsasrv.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\cng.sys
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-10-09 23:27:20 ----D---- C:\Program Files (x86)\Colin McRae Rally 2
2013-10-09 21:10:52 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 21:10:52 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 21:10:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 21:10:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 21:10:48 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 21:10:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 21:10:46 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 21:10:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 21:10:45 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 21:10:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 21:10:44 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 21:10:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 21:10:43 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 21:10:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 21:10:40 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 21:10:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 21:10:37 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 21:10:36 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 21:10:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 15:35:36 ----D---- C:\Program Files (x86)\Codemasters
2013-10-09 15:35:35 ----A---- C:\Windows\SYSWOW64\MSOSS.DLL
2013-10-09 14:35:10 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 14:35:10 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 14:35:04 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 14:35:02 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 14:35:01 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 14:35:00 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 14:34:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 14:34:56 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 14:34:55 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 14:34:54 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 14:34:45 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:45 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 14:34:43 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-03 23:50:13 ----A---- C:\error.txt
2013-10-03 23:14:58 ----D---- C:\ProgramData\Package Cache
2013-10-02 19:27:31 ----D---- C:\ProgramData\LogMeIn
2013-10-02 19:26:31 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-27 16:04:11 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-27 16:03:54 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-09-27 16:02:51 ----D---- C:\ProgramData\PMB Files
2013-09-27 16:02:47 ----D---- C:\Program Files (x86)\Pando Networks
2013-09-27 16:02:20 ----D---- C:\Users\Filip\AppData\Roaming\Riot Games
2013-09-22 15:01:35 ----D---- C:\FTB
2013-09-22 15:00:12 ----D---- C:\Users\Filip\AppData\Roaming\ftblauncher
======List of files/folders modified in the last 1 month======
2013-10-20 18:19:00 ----D---- C:\Windows\Temp
2013-10-20 18:17:24 ----D---- C:\Users\Filip\AppData\Roaming\.minecraft
2013-10-20 18:15:11 ----D---- C:\Program Files (x86)\Steam
2013-10-20 17:29:39 ----D---- C:\Users\Filip\AppData\Roaming\TS3Client
2013-10-20 17:16:16 ----D---- C:\Program Files (x86)\Origin
2013-10-20 17:14:03 ----D---- C:\Windows\system32\config
2013-10-20 17:13:30 ----D---- C:\Windows\System32
2013-10-20 17:13:29 ----RD---- C:\Program Files (x86)
2013-10-20 17:13:26 ----HD---- C:\ProgramData
2013-10-20 16:03:35 ----RD---- C:\Program Files
2013-10-20 15:48:15 ----D---- C:\Windows
2013-10-20 15:24:02 ----SHD---- C:\System Volume Information
2013-10-20 14:13:23 ----D---- C:\Windows\SysWOW64
2013-10-20 11:43:40 ----D---- C:\Windows\system32\drivers
2013-10-20 11:30:49 ----D---- C:\Windows\system32\NDF
2013-10-20 11:26:55 ----SHD---- C:\Windows\Installer
2013-10-20 11:26:55 ----SHD---- C:\Config.Msi
2013-10-20 11:26:14 ----D---- C:\Windows\system32\DriverStore
2013-10-20 11:26:14 ----D---- C:\Windows\system32\catroot
2013-10-20 11:26:13 ----D---- C:\Windows\inf
2013-10-20 11:24:32 ----D---- C:\Windows\system32\Tasks
2013-10-20 11:19:31 ----D---- C:\ProgramData\DriverGenius
2013-10-20 11:09:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-20 10:20:32 ----D---- C:\Users\Filip\AppData\Roaming\uTorrent
2013-10-20 10:08:50 ----D---- C:\Users\Filip\AppData\Roaming\Mozilla
2013-10-20 10:08:15 ----D---- C:\Windows\Prefetch
2013-10-19 15:33:09 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2013-10-19 10:53:54 ----RSD---- C:\Windows\assembly
2013-10-19 10:52:35 ----D---- C:\Windows\Logs
2013-10-18 22:54:42 ----D---- C:\Program Files (x86)\Origin Games
2013-10-18 22:35:50 ----D---- C:\Windows\system32\catroot2
2013-10-14 16:01:45 ----RD---- C:\Program Files (x86)\Skype
2013-10-13 17:38:00 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-13 10:27:41 ----D---- C:\Users\Filip\AppData\Roaming\vlc
2013-10-13 10:27:15 ----SHD---- C:\$Recycle.Bin
2013-10-13 10:15:15 ----D---- C:\Windows\Panther
2013-10-13 10:15:05 ----D---- C:\Windows\debug
2013-10-12 21:59:15 ----D---- C:\ProgramData\Skype
2013-10-12 20:53:30 ----RSD---- C:\Windows\Fonts
2013-10-12 14:55:57 ----D---- C:\Windows\Microsoft.NET
2013-10-12 14:22:40 ----D---- C:\ProgramData\AMD
2013-10-12 14:22:33 ----D---- C:\Program Files (x86)\Common Files
2013-10-12 14:17:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-12 14:16:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-12 14:16:52 ----D---- C:\Windows\system32\cs-CZ
2013-10-12 14:13:12 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-12 14:13:12 ----D---- C:\Windows\system32\en-US
2013-10-12 11:00:01 ----D---- C:\Windows\rescache
2013-10-11 22:05:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-11 21:54:28 ----HD---- C:\Program Files (x86)\Temp
2013-10-11 20:42:00 ----D---- C:\Windows\winsxs
2013-10-11 20:38:29 ----D---- C:\Windows\SYSWOW64\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\drivers\en-US
2013-10-11 20:38:29 ----D---- C:\Windows\PolicyDefinitions
2013-10-09 23:09:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-09 23:09:45 ----D---- C:\Program Files\Internet Explorer
2013-10-09 23:09:42 ----D---- C:\Windows\AppPatch
2013-10-09 23:07:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-09 23:07:42 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 21:13:17 ----D---- C:\ProgramData\Microsoft Help
2013-10-09 21:07:34 ----D---- C:\Windows\system32\MRT
2013-10-09 21:05:43 ----A---- C:\Windows\system32\MRT.exe
2013-10-05 16:08:19 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-04 00:28:42 ----D---- C:\ProgramData\Origin
2013-10-01 14:37:57 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-30 17:41:03 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-09-28 17:30:39 ----D---- C:\FFOutput
2013-09-28 17:28:09 ----D---- C:\ProgramData\YTD Video Downloader
2013-09-27 16:03:55 ----D---- C:\Windows\Tasks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2010-04-09 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-02 283200]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2013-05-13 76464]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-03-04 349416]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2013-05-13 50864]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-10-22 2206864]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
S3 AVer330C875;AVer330C875; C:\Windows\system32\DRIVERS\AVer330C875.sys [2013-08-26 1520128]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1; C:\Windows\system32\DRIVERS\libusb0.sys [2010-10-02 43456]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 LVUVC64;Logitech Webcam C210(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pspdisp;pspdisp; C:\Windows\system32\DRIVERS\pspdisp_x64.sys [2011-01-18 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 ScreamBAudioSvc;ScreamBee Audio; C:\Windows\system32\drivers\ScreamingBAudio64.sys [2009-11-26 38992]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2012-03-19 1454896]
S3 WinUSB;WinUSB driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 AVerRECentral;AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [2013-08-15 369152]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-13 76888]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 146272]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-10-22 27768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-09 565672]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-12 257416]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-01 2746704]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Filip at 2013-10-20 18:18:57
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 73 GB (38%) free of 191 GB
Total RAM: 4095 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:19:02, on 20.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\trend micro\Filip.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll (file missing)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Touchpad Server.lnk = C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRECentral - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9703 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"taskhost.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {371235EA-5762-4B4C-A8FC-3FFBF4E0EE3D}
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
WLIDSvcM.exe 2668
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Filip\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}]
Rich Media Downloader - C:\Users\Filip\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-10-25 5299320]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2010-10-29 5915480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Overwolf]
C:\Program Files (x86)\Overwolf\Overwolf.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-10-09 1813928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Driver Genius"= []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Touchpad Server.lnk - C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-20 17:12:00 ----D---- C:\AdwCleaner
2013-10-20 16:03:35 ----D---- C:\Program Files\trend micro
2013-10-20 16:03:34 ----D---- C:\rsit
2013-10-20 11:43:41 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-20 11:23:31 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-10-20 10:13:00 ----D---- C:\Program Files (x86)\FinalWire
2013-10-12 21:45:18 ----D---- C:\Program Files (x86)\VideoLAN
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer Pro
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer
2013-10-12 21:37:50 ----D---- C:\Program Files (x86)\Webteh
2013-10-12 21:19:31 ----D---- C:\Windows\Minidump
2013-10-12 20:53:19 ----D---- C:\Program Files (x86)\TeamViewer
2013-10-12 14:22:43 ----D---- C:\ProgramData\ATI
2013-10-12 14:22:39 ----D---- C:\Program Files (x86)\AMD AVT
2013-10-12 14:18:20 ----D---- C:\Program Files (x86)\ATI Technologies
2013-10-12 14:11:01 ----D---- C:\Program Files\ATI Technologies
2013-10-12 14:10:57 ----D---- C:\Program Files\ATI
2013-10-12 14:09:45 ----D---- C:\AMD
2013-10-11 23:20:01 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-11 22:03:31 ----D---- C:\Windows\Driver Cache
2013-10-11 22:03:31 ----A---- C:\Windows\system32\drivers\AVer330C875.sys
2013-10-11 22:02:17 ----D---- C:\Program Files (x86)\AVerMedia
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-11 20:37:31 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\tsgqec.dll
2013-10-11 20:37:21 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\wksprt.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpudd.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpcorets.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\aaclient.dll
2013-10-11 20:37:19 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-10-11 20:37:19 ----A---- C:\Windows\system32\mstscax.dll
2013-10-11 20:36:33 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-10-11 20:36:33 ----A---- C:\Windows\system32\qdvd.dll
2013-10-11 20:36:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\lsasrv.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\cng.sys
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-10-09 23:27:20 ----D---- C:\Program Files (x86)\Colin McRae Rally 2
2013-10-09 21:10:52 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 21:10:52 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 21:10:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 21:10:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 21:10:48 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 21:10:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 21:10:46 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 21:10:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 21:10:45 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 21:10:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 21:10:44 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 21:10:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 21:10:43 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 21:10:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 21:10:40 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 21:10:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 21:10:37 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 21:10:36 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 21:10:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 15:35:36 ----D---- C:\Program Files (x86)\Codemasters
2013-10-09 15:35:35 ----A---- C:\Windows\SYSWOW64\MSOSS.DLL
2013-10-09 14:35:10 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 14:35:10 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 14:35:04 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 14:35:02 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 14:35:01 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 14:35:00 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 14:34:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 14:34:56 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 14:34:55 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 14:34:54 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 14:34:45 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:45 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 14:34:43 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-03 23:50:13 ----A---- C:\error.txt
2013-10-03 23:14:58 ----D---- C:\ProgramData\Package Cache
2013-10-02 19:27:31 ----D---- C:\ProgramData\LogMeIn
2013-10-02 19:26:31 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-27 16:04:11 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-27 16:03:54 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-09-27 16:02:51 ----D---- C:\ProgramData\PMB Files
2013-09-27 16:02:47 ----D---- C:\Program Files (x86)\Pando Networks
2013-09-27 16:02:20 ----D---- C:\Users\Filip\AppData\Roaming\Riot Games
2013-09-22 15:01:35 ----D---- C:\FTB
2013-09-22 15:00:12 ----D---- C:\Users\Filip\AppData\Roaming\ftblauncher
======List of files/folders modified in the last 1 month======
2013-10-20 18:19:00 ----D---- C:\Windows\Temp
2013-10-20 18:17:24 ----D---- C:\Users\Filip\AppData\Roaming\.minecraft
2013-10-20 18:15:11 ----D---- C:\Program Files (x86)\Steam
2013-10-20 17:29:39 ----D---- C:\Users\Filip\AppData\Roaming\TS3Client
2013-10-20 17:16:16 ----D---- C:\Program Files (x86)\Origin
2013-10-20 17:14:03 ----D---- C:\Windows\system32\config
2013-10-20 17:13:30 ----D---- C:\Windows\System32
2013-10-20 17:13:29 ----RD---- C:\Program Files (x86)
2013-10-20 17:13:26 ----HD---- C:\ProgramData
2013-10-20 16:03:35 ----RD---- C:\Program Files
2013-10-20 15:48:15 ----D---- C:\Windows
2013-10-20 15:24:02 ----SHD---- C:\System Volume Information
2013-10-20 14:13:23 ----D---- C:\Windows\SysWOW64
2013-10-20 11:43:40 ----D---- C:\Windows\system32\drivers
2013-10-20 11:30:49 ----D---- C:\Windows\system32\NDF
2013-10-20 11:26:55 ----SHD---- C:\Windows\Installer
2013-10-20 11:26:55 ----SHD---- C:\Config.Msi
2013-10-20 11:26:14 ----D---- C:\Windows\system32\DriverStore
2013-10-20 11:26:14 ----D---- C:\Windows\system32\catroot
2013-10-20 11:26:13 ----D---- C:\Windows\inf
2013-10-20 11:24:32 ----D---- C:\Windows\system32\Tasks
2013-10-20 11:19:31 ----D---- C:\ProgramData\DriverGenius
2013-10-20 11:09:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-20 10:20:32 ----D---- C:\Users\Filip\AppData\Roaming\uTorrent
2013-10-20 10:08:50 ----D---- C:\Users\Filip\AppData\Roaming\Mozilla
2013-10-20 10:08:15 ----D---- C:\Windows\Prefetch
2013-10-19 15:33:09 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2013-10-19 10:53:54 ----RSD---- C:\Windows\assembly
2013-10-19 10:52:35 ----D---- C:\Windows\Logs
2013-10-18 22:54:42 ----D---- C:\Program Files (x86)\Origin Games
2013-10-18 22:35:50 ----D---- C:\Windows\system32\catroot2
2013-10-14 16:01:45 ----RD---- C:\Program Files (x86)\Skype
2013-10-13 17:38:00 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-13 10:27:41 ----D---- C:\Users\Filip\AppData\Roaming\vlc
2013-10-13 10:27:15 ----SHD---- C:\$Recycle.Bin
2013-10-13 10:15:15 ----D---- C:\Windows\Panther
2013-10-13 10:15:05 ----D---- C:\Windows\debug
2013-10-12 21:59:15 ----D---- C:\ProgramData\Skype
2013-10-12 20:53:30 ----RSD---- C:\Windows\Fonts
2013-10-12 14:55:57 ----D---- C:\Windows\Microsoft.NET
2013-10-12 14:22:40 ----D---- C:\ProgramData\AMD
2013-10-12 14:22:33 ----D---- C:\Program Files (x86)\Common Files
2013-10-12 14:17:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-12 14:16:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-12 14:16:52 ----D---- C:\Windows\system32\cs-CZ
2013-10-12 14:13:12 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-12 14:13:12 ----D---- C:\Windows\system32\en-US
2013-10-12 11:00:01 ----D---- C:\Windows\rescache
2013-10-11 22:05:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-11 21:54:28 ----HD---- C:\Program Files (x86)\Temp
2013-10-11 20:42:00 ----D---- C:\Windows\winsxs
2013-10-11 20:38:29 ----D---- C:\Windows\SYSWOW64\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\drivers\en-US
2013-10-11 20:38:29 ----D---- C:\Windows\PolicyDefinitions
2013-10-09 23:09:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-09 23:09:45 ----D---- C:\Program Files\Internet Explorer
2013-10-09 23:09:42 ----D---- C:\Windows\AppPatch
2013-10-09 23:07:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-09 23:07:42 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 21:13:17 ----D---- C:\ProgramData\Microsoft Help
2013-10-09 21:07:34 ----D---- C:\Windows\system32\MRT
2013-10-09 21:05:43 ----A---- C:\Windows\system32\MRT.exe
2013-10-05 16:08:19 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-04 00:28:42 ----D---- C:\ProgramData\Origin
2013-10-01 14:37:57 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-30 17:41:03 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-09-28 17:30:39 ----D---- C:\FFOutput
2013-09-28 17:28:09 ----D---- C:\ProgramData\YTD Video Downloader
2013-09-27 16:03:55 ----D---- C:\Windows\Tasks
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2010-04-09 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-02 283200]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2013-05-13 76464]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-03-04 349416]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2013-05-13 50864]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-10-22 2206864]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
S3 AVer330C875;AVer330C875; C:\Windows\system32\DRIVERS\AVer330C875.sys [2013-08-26 1520128]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1; C:\Windows\system32\DRIVERS\libusb0.sys [2010-10-02 43456]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 LVUVC64;Logitech Webcam C210(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pspdisp;pspdisp; C:\Windows\system32\DRIVERS\pspdisp_x64.sys [2011-01-18 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 ScreamBAudioSvc;ScreamBee Audio; C:\Windows\system32\drivers\ScreamingBAudio64.sys [2009-11-26 38992]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2012-03-19 1454896]
S3 WinUSB;WinUSB driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 AVerRECentral;AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [2013-08-15 369152]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-13 76888]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 146272]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-10-22 27768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-09 565672]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-12 257416]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-01 2746704]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hraní her a pak Modrá Smrt!
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\AutoKMS.exe
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285
C:\ProgramData\YTD Video Downloader
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:services
Skype C2C Service
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hraní her a pak Modrá Smrt!
Zde je ten LOG:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Filip at 2013-10-21 20:52:34
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 59 GB (31%) free of 191 GB
Total RAM: 4095 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:52:42, on 21.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Origin\Origin.exe
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
C:\Program Files\trend micro\Filip.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Touchpad Server.lnk = C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRECentral - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9602 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
taskeng.exe {064B3D55-EFDB-458D-BE85-40052108969F}
taskeng.exe {1072180A-C561-4E0B-B939-454192CC8BB4}
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2664
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\10212013_204629.log
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
"C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc" /escort 792
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\Filip\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-10-25 5299320]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
"uTorrent"=C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2010-10-29 5915480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Overwolf]
C:\Program Files (x86)\Overwolf\Overwolf.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-10-09 1813928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Driver Genius"= []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Touchpad Server.lnk - C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-21 20:46:12 ----D---- C:\_OTM
2013-10-20 23:47:24 ----D---- C:\Program Files (x86)\Electronic Arts
2013-10-20 23:41:48 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-10-20 17:12:00 ----D---- C:\AdwCleaner
2013-10-20 16:03:35 ----D---- C:\Program Files\trend micro
2013-10-20 16:03:34 ----D---- C:\rsit
2013-10-20 11:43:41 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-20 11:23:31 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-10-20 10:13:00 ----D---- C:\Program Files (x86)\FinalWire
2013-10-12 21:45:18 ----D---- C:\Program Files (x86)\VideoLAN
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer Pro
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer
2013-10-12 21:37:50 ----D---- C:\Program Files (x86)\Webteh
2013-10-12 21:19:31 ----D---- C:\Windows\Minidump
2013-10-12 20:53:19 ----D---- C:\Program Files (x86)\TeamViewer
2013-10-12 14:22:43 ----D---- C:\ProgramData\ATI
2013-10-12 14:22:39 ----D---- C:\Program Files (x86)\AMD AVT
2013-10-12 14:18:20 ----D---- C:\Program Files (x86)\ATI Technologies
2013-10-12 14:11:01 ----D---- C:\Program Files\ATI Technologies
2013-10-12 14:10:57 ----D---- C:\Program Files\ATI
2013-10-12 14:09:45 ----D---- C:\AMD
2013-10-11 23:20:01 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-11 22:03:31 ----D---- C:\Windows\Driver Cache
2013-10-11 22:03:31 ----A---- C:\Windows\system32\drivers\AVer330C875.sys
2013-10-11 22:02:17 ----D---- C:\Program Files (x86)\AVerMedia
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-11 20:37:31 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\tsgqec.dll
2013-10-11 20:37:21 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\wksprt.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpudd.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpcorets.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\aaclient.dll
2013-10-11 20:37:19 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-10-11 20:37:19 ----A---- C:\Windows\system32\mstscax.dll
2013-10-11 20:36:33 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-10-11 20:36:33 ----A---- C:\Windows\system32\qdvd.dll
2013-10-11 20:36:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\lsasrv.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\cng.sys
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-10-09 23:27:20 ----D---- C:\Program Files (x86)\Colin McRae Rally 2
2013-10-09 21:10:52 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 21:10:52 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 21:10:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 21:10:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 21:10:48 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 21:10:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 21:10:46 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 21:10:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 21:10:45 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 21:10:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 21:10:44 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 21:10:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 21:10:43 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 21:10:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 21:10:40 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 21:10:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 21:10:37 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 21:10:36 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 21:10:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 15:35:36 ----D---- C:\Program Files (x86)\Codemasters
2013-10-09 15:35:35 ----A---- C:\Windows\SYSWOW64\MSOSS.DLL
2013-10-09 14:35:10 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 14:35:10 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 14:35:04 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 14:35:02 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 14:35:01 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 14:35:00 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 14:34:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 14:34:56 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 14:34:55 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 14:34:54 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 14:34:45 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:45 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 14:34:43 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-03 23:50:13 ----A---- C:\error.txt
2013-10-03 23:14:58 ----D---- C:\ProgramData\Package Cache
2013-10-02 19:27:31 ----D---- C:\ProgramData\LogMeIn
2013-10-02 19:26:31 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-27 16:04:11 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-27 16:03:54 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-09-27 16:02:51 ----D---- C:\ProgramData\PMB Files
2013-09-27 16:02:47 ----D---- C:\Program Files (x86)\Pando Networks
2013-09-27 16:02:20 ----D---- C:\Users\Filip\AppData\Roaming\Riot Games
2013-09-22 15:01:35 ----D---- C:\FTB
2013-09-22 15:00:12 ----D---- C:\Users\Filip\AppData\Roaming\ftblauncher
======List of files/folders modified in the last 1 month======
2013-10-21 20:52:36 ----D---- C:\Users\Filip\AppData\Roaming\uTorrent
2013-10-21 20:50:38 ----D---- C:\Program Files (x86)\Origin
2013-10-21 20:49:35 ----D---- C:\Windows\Temp
2013-10-21 20:47:05 ----D---- C:\Windows\SysWOW64
2013-10-21 20:47:05 ----D---- C:\Windows
2013-10-21 20:46:29 ----HD---- C:\ProgramData
2013-10-21 20:46:29 ----D---- C:\Windows\Tasks
2013-10-21 20:21:30 ----D---- C:\Users\Filip\AppData\Roaming\TS3Client
2013-10-21 20:07:26 ----D---- C:\Users\Filip\AppData\Roaming\.minecraft
2013-10-21 19:55:18 ----D---- C:\Program Files (x86)\Steam
2013-10-21 17:30:05 ----D---- C:\Windows\system32\config
2013-10-21 00:02:01 ----SHD---- C:\Windows\Installer
2013-10-21 00:02:00 ----SHD---- C:\Config.Msi
2013-10-20 23:47:24 ----RD---- C:\Program Files (x86)
2013-10-20 23:46:38 ----RSD---- C:\Windows\assembly
2013-10-20 23:45:32 ----SHD---- C:\System Volume Information
2013-10-20 23:42:12 ----D---- C:\ProgramData\Solidshield
2013-10-20 18:25:01 ----D---- C:\Windows\Logs
2013-10-20 17:13:30 ----D---- C:\Windows\System32
2013-10-20 16:03:35 ----RD---- C:\Program Files
2013-10-20 11:43:40 ----D---- C:\Windows\system32\drivers
2013-10-20 11:30:49 ----D---- C:\Windows\system32\NDF
2013-10-20 11:26:14 ----D---- C:\Windows\system32\DriverStore
2013-10-20 11:26:14 ----D---- C:\Windows\system32\catroot
2013-10-20 11:26:13 ----D---- C:\Windows\inf
2013-10-20 11:24:32 ----D---- C:\Windows\system32\Tasks
2013-10-20 11:19:31 ----D---- C:\ProgramData\DriverGenius
2013-10-20 11:09:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-20 10:08:50 ----D---- C:\Users\Filip\AppData\Roaming\Mozilla
2013-10-20 10:08:15 ----D---- C:\Windows\Prefetch
2013-10-19 15:33:09 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2013-10-18 22:54:42 ----D---- C:\Program Files (x86)\Origin Games
2013-10-18 22:35:50 ----D---- C:\Windows\system32\catroot2
2013-10-14 16:01:45 ----RD---- C:\Program Files (x86)\Skype
2013-10-13 17:38:00 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-13 10:27:41 ----D---- C:\Users\Filip\AppData\Roaming\vlc
2013-10-13 10:27:15 ----SHD---- C:\$Recycle.Bin
2013-10-13 10:15:15 ----D---- C:\Windows\Panther
2013-10-13 10:15:05 ----D---- C:\Windows\debug
2013-10-12 21:59:15 ----D---- C:\ProgramData\Skype
2013-10-12 20:53:30 ----RSD---- C:\Windows\Fonts
2013-10-12 14:55:57 ----D---- C:\Windows\Microsoft.NET
2013-10-12 14:22:40 ----D---- C:\ProgramData\AMD
2013-10-12 14:22:33 ----D---- C:\Program Files (x86)\Common Files
2013-10-12 14:17:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-12 14:16:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-12 14:16:52 ----D---- C:\Windows\system32\cs-CZ
2013-10-12 14:13:12 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-12 14:13:12 ----D---- C:\Windows\system32\en-US
2013-10-12 11:00:01 ----D---- C:\Windows\rescache
2013-10-11 22:05:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-11 21:54:28 ----HD---- C:\Program Files (x86)\Temp
2013-10-11 20:42:00 ----D---- C:\Windows\winsxs
2013-10-11 20:38:29 ----D---- C:\Windows\SYSWOW64\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\drivers\en-US
2013-10-11 20:38:29 ----D---- C:\Windows\PolicyDefinitions
2013-10-09 23:09:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-09 23:09:45 ----D---- C:\Program Files\Internet Explorer
2013-10-09 23:09:42 ----D---- C:\Windows\AppPatch
2013-10-09 23:07:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-09 23:07:42 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 21:13:17 ----D---- C:\ProgramData\Microsoft Help
2013-10-09 21:07:34 ----D---- C:\Windows\system32\MRT
2013-10-09 21:05:43 ----A---- C:\Windows\system32\MRT.exe
2013-10-05 16:08:19 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-04 00:28:42 ----D---- C:\ProgramData\Origin
2013-10-01 14:37:57 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-30 17:41:03 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-09-28 17:30:39 ----D---- C:\FFOutput
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2010-04-09 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-02 283200]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2013-05-13 76464]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-03-04 349416]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2013-05-13 50864]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-10-22 2206864]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
S3 AVer330C875;AVer330C875; C:\Windows\system32\DRIVERS\AVer330C875.sys [2013-08-26 1520128]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1; C:\Windows\system32\DRIVERS\libusb0.sys [2010-10-02 43456]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 LVUVC64;Logitech Webcam C210(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pspdisp;pspdisp; C:\Windows\system32\DRIVERS\pspdisp_x64.sys [2011-01-18 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 ScreamBAudioSvc;ScreamBee Audio; C:\Windows\system32\drivers\ScreamingBAudio64.sys [2009-11-26 38992]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2012-03-19 1454896]
S3 WinUSB;WinUSB driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 AVerRECentral;AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [2013-08-15 369152]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-13 76888]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 146272]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-10-22 27768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-09 565672]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-12 257416]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-01 2746704]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Filip at 2013-10-21 20:52:34
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 59 GB (31%) free of 191 GB
Total RAM: 4095 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:52:42, on 21.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Origin\Origin.exe
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
C:\Program Files\trend micro\Filip.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Touchpad Server.lnk = C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRECentral - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9602 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
taskeng.exe {064B3D55-EFDB-458D-BE85-40052108969F}
taskeng.exe {1072180A-C561-4E0B-B939-454192CC8BB4}
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2664
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\10212013_204629.log
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
"C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc" /escort 792
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\Filip\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-10-25 5299320]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
"uTorrent"=C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2010-10-29 5915480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Overwolf]
C:\Program Files (x86)\Overwolf\Overwolf.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-10-09 1813928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Driver Genius"= []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Touchpad Server.lnk - C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-21 20:46:12 ----D---- C:\_OTM
2013-10-20 23:47:24 ----D---- C:\Program Files (x86)\Electronic Arts
2013-10-20 23:41:48 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-10-20 17:12:00 ----D---- C:\AdwCleaner
2013-10-20 16:03:35 ----D---- C:\Program Files\trend micro
2013-10-20 16:03:34 ----D---- C:\rsit
2013-10-20 11:43:41 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-20 11:23:31 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-10-20 10:13:00 ----D---- C:\Program Files (x86)\FinalWire
2013-10-12 21:45:18 ----D---- C:\Program Files (x86)\VideoLAN
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer Pro
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer
2013-10-12 21:37:50 ----D---- C:\Program Files (x86)\Webteh
2013-10-12 21:19:31 ----D---- C:\Windows\Minidump
2013-10-12 20:53:19 ----D---- C:\Program Files (x86)\TeamViewer
2013-10-12 14:22:43 ----D---- C:\ProgramData\ATI
2013-10-12 14:22:39 ----D---- C:\Program Files (x86)\AMD AVT
2013-10-12 14:18:20 ----D---- C:\Program Files (x86)\ATI Technologies
2013-10-12 14:11:01 ----D---- C:\Program Files\ATI Technologies
2013-10-12 14:10:57 ----D---- C:\Program Files\ATI
2013-10-12 14:09:45 ----D---- C:\AMD
2013-10-11 23:20:01 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-11 22:03:31 ----D---- C:\Windows\Driver Cache
2013-10-11 22:03:31 ----A---- C:\Windows\system32\drivers\AVer330C875.sys
2013-10-11 22:02:17 ----D---- C:\Program Files (x86)\AVerMedia
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-11 20:37:31 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\tsgqec.dll
2013-10-11 20:37:21 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\wksprt.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpudd.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpcorets.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\aaclient.dll
2013-10-11 20:37:19 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-10-11 20:37:19 ----A---- C:\Windows\system32\mstscax.dll
2013-10-11 20:36:33 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-10-11 20:36:33 ----A---- C:\Windows\system32\qdvd.dll
2013-10-11 20:36:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\lsasrv.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\cng.sys
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-10-09 23:27:20 ----D---- C:\Program Files (x86)\Colin McRae Rally 2
2013-10-09 21:10:52 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 21:10:52 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 21:10:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 21:10:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 21:10:48 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 21:10:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 21:10:46 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 21:10:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 21:10:45 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 21:10:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 21:10:44 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 21:10:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 21:10:43 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 21:10:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 21:10:40 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 21:10:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 21:10:37 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 21:10:36 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 21:10:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 15:35:36 ----D---- C:\Program Files (x86)\Codemasters
2013-10-09 15:35:35 ----A---- C:\Windows\SYSWOW64\MSOSS.DLL
2013-10-09 14:35:10 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 14:35:10 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 14:35:04 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 14:35:02 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 14:35:01 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 14:35:00 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 14:34:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 14:34:56 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 14:34:55 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 14:34:54 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 14:34:45 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:45 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 14:34:43 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-03 23:50:13 ----A---- C:\error.txt
2013-10-03 23:14:58 ----D---- C:\ProgramData\Package Cache
2013-10-02 19:27:31 ----D---- C:\ProgramData\LogMeIn
2013-10-02 19:26:31 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-27 16:04:11 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-27 16:03:54 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-09-27 16:02:51 ----D---- C:\ProgramData\PMB Files
2013-09-27 16:02:47 ----D---- C:\Program Files (x86)\Pando Networks
2013-09-27 16:02:20 ----D---- C:\Users\Filip\AppData\Roaming\Riot Games
2013-09-22 15:01:35 ----D---- C:\FTB
2013-09-22 15:00:12 ----D---- C:\Users\Filip\AppData\Roaming\ftblauncher
======List of files/folders modified in the last 1 month======
2013-10-21 20:52:36 ----D---- C:\Users\Filip\AppData\Roaming\uTorrent
2013-10-21 20:50:38 ----D---- C:\Program Files (x86)\Origin
2013-10-21 20:49:35 ----D---- C:\Windows\Temp
2013-10-21 20:47:05 ----D---- C:\Windows\SysWOW64
2013-10-21 20:47:05 ----D---- C:\Windows
2013-10-21 20:46:29 ----HD---- C:\ProgramData
2013-10-21 20:46:29 ----D---- C:\Windows\Tasks
2013-10-21 20:21:30 ----D---- C:\Users\Filip\AppData\Roaming\TS3Client
2013-10-21 20:07:26 ----D---- C:\Users\Filip\AppData\Roaming\.minecraft
2013-10-21 19:55:18 ----D---- C:\Program Files (x86)\Steam
2013-10-21 17:30:05 ----D---- C:\Windows\system32\config
2013-10-21 00:02:01 ----SHD---- C:\Windows\Installer
2013-10-21 00:02:00 ----SHD---- C:\Config.Msi
2013-10-20 23:47:24 ----RD---- C:\Program Files (x86)
2013-10-20 23:46:38 ----RSD---- C:\Windows\assembly
2013-10-20 23:45:32 ----SHD---- C:\System Volume Information
2013-10-20 23:42:12 ----D---- C:\ProgramData\Solidshield
2013-10-20 18:25:01 ----D---- C:\Windows\Logs
2013-10-20 17:13:30 ----D---- C:\Windows\System32
2013-10-20 16:03:35 ----RD---- C:\Program Files
2013-10-20 11:43:40 ----D---- C:\Windows\system32\drivers
2013-10-20 11:30:49 ----D---- C:\Windows\system32\NDF
2013-10-20 11:26:14 ----D---- C:\Windows\system32\DriverStore
2013-10-20 11:26:14 ----D---- C:\Windows\system32\catroot
2013-10-20 11:26:13 ----D---- C:\Windows\inf
2013-10-20 11:24:32 ----D---- C:\Windows\system32\Tasks
2013-10-20 11:19:31 ----D---- C:\ProgramData\DriverGenius
2013-10-20 11:09:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-20 10:08:50 ----D---- C:\Users\Filip\AppData\Roaming\Mozilla
2013-10-20 10:08:15 ----D---- C:\Windows\Prefetch
2013-10-19 15:33:09 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2013-10-18 22:54:42 ----D---- C:\Program Files (x86)\Origin Games
2013-10-18 22:35:50 ----D---- C:\Windows\system32\catroot2
2013-10-14 16:01:45 ----RD---- C:\Program Files (x86)\Skype
2013-10-13 17:38:00 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-13 10:27:41 ----D---- C:\Users\Filip\AppData\Roaming\vlc
2013-10-13 10:27:15 ----SHD---- C:\$Recycle.Bin
2013-10-13 10:15:15 ----D---- C:\Windows\Panther
2013-10-13 10:15:05 ----D---- C:\Windows\debug
2013-10-12 21:59:15 ----D---- C:\ProgramData\Skype
2013-10-12 20:53:30 ----RSD---- C:\Windows\Fonts
2013-10-12 14:55:57 ----D---- C:\Windows\Microsoft.NET
2013-10-12 14:22:40 ----D---- C:\ProgramData\AMD
2013-10-12 14:22:33 ----D---- C:\Program Files (x86)\Common Files
2013-10-12 14:17:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-12 14:16:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-12 14:16:52 ----D---- C:\Windows\system32\cs-CZ
2013-10-12 14:13:12 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-12 14:13:12 ----D---- C:\Windows\system32\en-US
2013-10-12 11:00:01 ----D---- C:\Windows\rescache
2013-10-11 22:05:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-11 21:54:28 ----HD---- C:\Program Files (x86)\Temp
2013-10-11 20:42:00 ----D---- C:\Windows\winsxs
2013-10-11 20:38:29 ----D---- C:\Windows\SYSWOW64\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\drivers\en-US
2013-10-11 20:38:29 ----D---- C:\Windows\PolicyDefinitions
2013-10-09 23:09:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-09 23:09:45 ----D---- C:\Program Files\Internet Explorer
2013-10-09 23:09:42 ----D---- C:\Windows\AppPatch
2013-10-09 23:07:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-09 23:07:42 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 21:13:17 ----D---- C:\ProgramData\Microsoft Help
2013-10-09 21:07:34 ----D---- C:\Windows\system32\MRT
2013-10-09 21:05:43 ----A---- C:\Windows\system32\MRT.exe
2013-10-05 16:08:19 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-04 00:28:42 ----D---- C:\ProgramData\Origin
2013-10-01 14:37:57 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-30 17:41:03 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-09-28 17:30:39 ----D---- C:\FFOutput
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2010-04-09 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-02 283200]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2013-05-13 76464]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-03-04 349416]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2013-05-13 50864]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-10-22 2206864]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
S3 AVer330C875;AVer330C875; C:\Windows\system32\DRIVERS\AVer330C875.sys [2013-08-26 1520128]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1; C:\Windows\system32\DRIVERS\libusb0.sys [2010-10-02 43456]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 LVUVC64;Logitech Webcam C210(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pspdisp;pspdisp; C:\Windows\system32\DRIVERS\pspdisp_x64.sys [2011-01-18 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 ScreamBAudioSvc;ScreamBee Audio; C:\Windows\system32\drivers\ScreamingBAudio64.sys [2009-11-26 38992]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2012-03-19 1454896]
S3 WinUSB;WinUSB driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 AVerRECentral;AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [2013-08-15 369152]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-13 76888]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 146272]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-10-22 27768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-09 565672]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-12 257416]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-01 2746704]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hraní her a pak Modrá Smrt!
Dvouklikem na soubor C:\Program Files\trend micro\Filip.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - (no file)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hraní her a pak Modrá Smrt!
Mám udělat nový log?
Kdyby něco, tak je tady:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Filip at 2013-10-21 22:25:01
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 58 GB (31%) free of 191 GB
Total RAM: 4095 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:25:09, on 21.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Origin\Origin.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Filip.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Touchpad Server.lnk = C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRECentral - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9718 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
taskeng.exe {39185E65-9237-4D88-9E9C-59C644C2050A}
taskeng.exe {2C0913EB-543C-4B7D-AF9E-35E9CC1F2A4D}
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc" /escort 2976
WLIDSvcM.exe 2988
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3224.0.700548278\9716706" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,18,24,26 --gpu-vendor-id=0x1002 --gpu-device-id=0x683f --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_64/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="3224.1.126843365\1620688135" /prefetch:673131151
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_64/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3224.2.1303415690\1578517132" /prefetch:673131151
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\Filip\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-10-25 5299320]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
"uTorrent"=C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2010-10-29 5915480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Overwolf]
C:\Program Files (x86)\Overwolf\Overwolf.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-10-09 1813928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Driver Genius"= []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Touchpad Server.lnk - C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-21 22:25:01 ----D---- C:\rsit
2013-10-20 23:47:24 ----D---- C:\Program Files (x86)\Electronic Arts
2013-10-20 23:41:48 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-10-20 17:12:00 ----D---- C:\AdwCleaner
2013-10-20 16:03:35 ----D---- C:\Program Files\trend micro
2013-10-20 11:43:41 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-20 11:23:31 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-10-20 10:13:00 ----D---- C:\Program Files (x86)\FinalWire
2013-10-12 21:45:18 ----D---- C:\Program Files (x86)\VideoLAN
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer Pro
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer
2013-10-12 21:37:50 ----D---- C:\Program Files (x86)\Webteh
2013-10-12 21:19:31 ----D---- C:\Windows\Minidump
2013-10-12 20:53:19 ----D---- C:\Program Files (x86)\TeamViewer
2013-10-12 14:22:43 ----D---- C:\ProgramData\ATI
2013-10-12 14:22:39 ----D---- C:\Program Files (x86)\AMD AVT
2013-10-12 14:18:20 ----D---- C:\Program Files (x86)\ATI Technologies
2013-10-12 14:11:01 ----D---- C:\Program Files\ATI Technologies
2013-10-12 14:10:57 ----D---- C:\Program Files\ATI
2013-10-12 14:09:45 ----D---- C:\AMD
2013-10-11 23:20:01 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-11 22:03:31 ----D---- C:\Windows\Driver Cache
2013-10-11 22:03:31 ----A---- C:\Windows\system32\drivers\AVer330C875.sys
2013-10-11 22:02:17 ----D---- C:\Program Files (x86)\AVerMedia
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-11 20:37:31 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\tsgqec.dll
2013-10-11 20:37:21 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\wksprt.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpudd.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpcorets.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\aaclient.dll
2013-10-11 20:37:19 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-10-11 20:37:19 ----A---- C:\Windows\system32\mstscax.dll
2013-10-11 20:36:33 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-10-11 20:36:33 ----A---- C:\Windows\system32\qdvd.dll
2013-10-11 20:36:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\lsasrv.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\cng.sys
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-10-09 23:27:20 ----D---- C:\Program Files (x86)\Colin McRae Rally 2
2013-10-09 21:10:52 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 21:10:52 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 21:10:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 21:10:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 21:10:48 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 21:10:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 21:10:46 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 21:10:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 21:10:45 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 21:10:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 21:10:44 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 21:10:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 21:10:43 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 21:10:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 21:10:40 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 21:10:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 21:10:37 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 21:10:36 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 21:10:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 15:35:36 ----D---- C:\Program Files (x86)\Codemasters
2013-10-09 15:35:35 ----A---- C:\Windows\SYSWOW64\MSOSS.DLL
2013-10-09 14:35:10 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 14:35:10 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 14:35:04 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 14:35:02 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 14:35:01 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 14:35:00 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 14:34:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 14:34:56 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 14:34:55 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 14:34:54 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 14:34:45 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:45 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 14:34:43 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-03 23:50:13 ----A---- C:\error.txt
2013-10-03 23:14:58 ----D---- C:\ProgramData\Package Cache
2013-10-02 19:27:31 ----D---- C:\ProgramData\LogMeIn
2013-10-02 19:26:31 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-27 16:04:11 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-27 16:03:54 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-09-27 16:02:51 ----D---- C:\ProgramData\PMB Files
2013-09-27 16:02:47 ----D---- C:\Program Files (x86)\Pando Networks
2013-09-27 16:02:20 ----D---- C:\Users\Filip\AppData\Roaming\Riot Games
2013-09-22 15:01:35 ----D---- C:\FTB
2013-09-22 15:00:12 ----D---- C:\Users\Filip\AppData\Roaming\ftblauncher
======List of files/folders modified in the last 1 month======
2013-10-21 22:22:22 ----D---- C:\Windows\Temp
2013-10-21 22:22:05 ----D---- C:\Users\Filip\AppData\Roaming\uTorrent
2013-10-21 22:21:37 ----D---- C:\Program Files (x86)\Origin
2013-10-21 22:11:46 ----D---- C:\Users\Filip\AppData\Roaming\TS3Client
2013-10-21 21:39:59 ----D---- C:\Program Files (x86)\Steam
2013-10-21 21:03:47 ----D---- C:\Windows\SysWOW64
2013-10-21 20:47:05 ----D---- C:\Windows
2013-10-21 20:46:29 ----HD---- C:\ProgramData
2013-10-21 20:46:29 ----D---- C:\Windows\Tasks
2013-10-21 20:07:26 ----D---- C:\Users\Filip\AppData\Roaming\.minecraft
2013-10-21 17:30:05 ----D---- C:\Windows\system32\config
2013-10-21 00:02:01 ----SHD---- C:\Windows\Installer
2013-10-21 00:02:00 ----SHD---- C:\Config.Msi
2013-10-20 23:47:24 ----RD---- C:\Program Files (x86)
2013-10-20 23:46:38 ----RSD---- C:\Windows\assembly
2013-10-20 23:45:32 ----SHD---- C:\System Volume Information
2013-10-20 23:42:12 ----D---- C:\ProgramData\Solidshield
2013-10-20 18:25:01 ----D---- C:\Windows\Logs
2013-10-20 17:13:30 ----D---- C:\Windows\System32
2013-10-20 16:03:35 ----RD---- C:\Program Files
2013-10-20 11:43:40 ----D---- C:\Windows\system32\drivers
2013-10-20 11:30:49 ----D---- C:\Windows\system32\NDF
2013-10-20 11:26:14 ----D---- C:\Windows\system32\DriverStore
2013-10-20 11:26:14 ----D---- C:\Windows\system32\catroot
2013-10-20 11:26:13 ----D---- C:\Windows\inf
2013-10-20 11:24:32 ----D---- C:\Windows\system32\Tasks
2013-10-20 11:19:31 ----D---- C:\ProgramData\DriverGenius
2013-10-20 11:09:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-20 10:08:50 ----D---- C:\Users\Filip\AppData\Roaming\Mozilla
2013-10-20 10:08:15 ----D---- C:\Windows\Prefetch
2013-10-19 15:33:09 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2013-10-18 22:54:42 ----D---- C:\Program Files (x86)\Origin Games
2013-10-18 22:35:50 ----D---- C:\Windows\system32\catroot2
2013-10-14 16:01:45 ----RD---- C:\Program Files (x86)\Skype
2013-10-13 17:38:00 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-13 10:27:41 ----D---- C:\Users\Filip\AppData\Roaming\vlc
2013-10-13 10:27:15 ----SHD---- C:\$Recycle.Bin
2013-10-13 10:15:15 ----D---- C:\Windows\Panther
2013-10-13 10:15:05 ----D---- C:\Windows\debug
2013-10-12 21:59:15 ----D---- C:\ProgramData\Skype
2013-10-12 20:53:30 ----RSD---- C:\Windows\Fonts
2013-10-12 14:55:57 ----D---- C:\Windows\Microsoft.NET
2013-10-12 14:22:40 ----D---- C:\ProgramData\AMD
2013-10-12 14:22:33 ----D---- C:\Program Files (x86)\Common Files
2013-10-12 14:17:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-12 14:16:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-12 14:16:52 ----D---- C:\Windows\system32\cs-CZ
2013-10-12 14:13:12 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-12 14:13:12 ----D---- C:\Windows\system32\en-US
2013-10-12 11:00:01 ----D---- C:\Windows\rescache
2013-10-11 22:05:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-11 21:54:28 ----HD---- C:\Program Files (x86)\Temp
2013-10-11 20:42:00 ----D---- C:\Windows\winsxs
2013-10-11 20:38:29 ----D---- C:\Windows\SYSWOW64\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\drivers\en-US
2013-10-11 20:38:29 ----D---- C:\Windows\PolicyDefinitions
2013-10-09 23:09:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-09 23:09:45 ----D---- C:\Program Files\Internet Explorer
2013-10-09 23:09:42 ----D---- C:\Windows\AppPatch
2013-10-09 23:07:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-09 23:07:42 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 21:13:17 ----D---- C:\ProgramData\Microsoft Help
2013-10-09 21:07:34 ----D---- C:\Windows\system32\MRT
2013-10-09 21:05:43 ----A---- C:\Windows\system32\MRT.exe
2013-10-05 16:08:19 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-04 00:28:42 ----D---- C:\ProgramData\Origin
2013-10-01 14:37:57 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-30 17:41:03 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-09-28 17:30:39 ----D---- C:\FFOutput
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2010-04-09 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-02 283200]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2013-05-13 76464]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-03-04 349416]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2013-05-13 50864]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-10-22 2206864]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
S3 AVer330C875;AVer330C875; C:\Windows\system32\DRIVERS\AVer330C875.sys [2013-08-26 1520128]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1; C:\Windows\system32\DRIVERS\libusb0.sys [2010-10-02 43456]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 LVUVC64;Logitech Webcam C210(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pspdisp;pspdisp; C:\Windows\system32\DRIVERS\pspdisp_x64.sys [2011-01-18 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 ScreamBAudioSvc;ScreamBee Audio; C:\Windows\system32\drivers\ScreamingBAudio64.sys [2009-11-26 38992]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2012-03-19 1454896]
S3 WinUSB;WinUSB driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 AVerRECentral;AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [2013-08-15 369152]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-13 76888]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 146272]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-10-22 27768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-09 565672]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-12 257416]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-01 2746704]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]
-----------------EOF-----------------
Kdyby něco, tak je tady:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Filip at 2013-10-21 22:25:01
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 58 GB (31%) free of 191 GB
Total RAM: 4095 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:25:09, on 21.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Origin\Origin.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Filip.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe -AutoStart
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Touchpad Server.lnk = C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVerRECentral - AVerMedia TECHNOLOGIES, Inc. - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9718 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
taskeng.exe {39185E65-9237-4D88-9E9C-59C644C2050A}
taskeng.exe {2C0913EB-543C-4B7D-AF9E-35E9CC1F2A4D}
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc" /escort 2976
WLIDSvcM.exe 2988
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3224.0.700548278\9716706" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,18,24,26 --gpu-vendor-id=0x1002 --gpu-device-id=0x683f --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_64/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="3224.1.126843365\1620688135" /prefetch:673131151
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R1/CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group7 pct:10f stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-1-Percent/group_64/UMA-Uniformity-Trial-10-Percent/group_04/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3224.2.1303415690\1578517132" /prefetch:673131151
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\Filip\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-12 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-12 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-10-25 5299320]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
"uTorrent"=C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
C:\Program Files (x86)\Ask.com\Updater\Updater.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoKMS]
C:\Windows\AutoKMS.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
C:\Program Files (x86)\Origin\Origin.exe [2013-10-16 3561816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Filip\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2010-10-29 5915480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [2012-09-13 204136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Overwolf]
C:\Program Files (x86)\Overwolf\Overwolf.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-02 20472992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-10-09 1813928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Filip\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-04 1052496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\MCAFEE~1\30E3C3~1.285\SSSCHE~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Driver Genius"= []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-01 2345296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Touchpad Server.lnk - C:\Program Files (x86)\Things & Stuff\Touchpad Server\TouchpadServer.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-10-21 22:25:01 ----D---- C:\rsit
2013-10-20 23:47:24 ----D---- C:\Program Files (x86)\Electronic Arts
2013-10-20 23:41:48 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-10-20 17:12:00 ----D---- C:\AdwCleaner
2013-10-20 16:03:35 ----D---- C:\Program Files\trend micro
2013-10-20 11:43:41 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-20 11:23:31 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-10-20 10:13:00 ----D---- C:\Program Files (x86)\FinalWire
2013-10-12 21:45:18 ----D---- C:\Program Files (x86)\VideoLAN
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer Pro
2013-10-12 21:37:51 ----D---- C:\Users\Filip\AppData\Roaming\BSplayer
2013-10-12 21:37:50 ----D---- C:\Program Files (x86)\Webteh
2013-10-12 21:19:31 ----D---- C:\Windows\Minidump
2013-10-12 20:53:19 ----D---- C:\Program Files (x86)\TeamViewer
2013-10-12 14:22:43 ----D---- C:\ProgramData\ATI
2013-10-12 14:22:39 ----D---- C:\Program Files (x86)\AMD AVT
2013-10-12 14:18:20 ----D---- C:\Program Files (x86)\ATI Technologies
2013-10-12 14:11:01 ----D---- C:\Program Files\ATI Technologies
2013-10-12 14:10:57 ----D---- C:\Program Files\ATI
2013-10-12 14:09:45 ----D---- C:\AMD
2013-10-11 23:20:01 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-11 22:03:31 ----D---- C:\Windows\Driver Cache
2013-10-11 22:03:31 ----A---- C:\Windows\system32\drivers\AVer330C875.sys
2013-10-11 22:02:17 ----D---- C:\Program Files (x86)\AVerMedia
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-11 20:37:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-11 20:37:31 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-10-11 20:37:27 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-10-11 20:37:22 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\wksprtPS.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-11 20:37:22 ----A---- C:\Windows\system32\tsgqec.dll
2013-10-11 20:37:21 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\wksprt.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpudd.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\rdpcorets.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\mstsc.exe
2013-10-11 20:37:20 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-10-11 20:37:20 ----A---- C:\Windows\system32\aaclient.dll
2013-10-11 20:37:19 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-10-11 20:37:19 ----A---- C:\Windows\system32\mstscax.dll
2013-10-11 20:36:33 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-10-11 20:36:33 ----A---- C:\Windows\system32\qdvd.dll
2013-10-11 20:36:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\schannel.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\lsasrv.dll
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-10-11 20:36:24 ----A---- C:\Windows\system32\drivers\cng.sys
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-10-11 20:36:23 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-10-09 23:27:20 ----D---- C:\Program Files (x86)\Colin McRae Rally 2
2013-10-09 21:10:52 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 21:10:52 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 21:10:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 21:10:50 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 21:10:49 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 21:10:49 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 21:10:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 21:10:48 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 21:10:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 21:10:46 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 21:10:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 21:10:45 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 21:10:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 21:10:44 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 21:10:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 21:10:43 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 21:10:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 21:10:41 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 21:10:40 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 21:10:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 21:10:37 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 21:10:36 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 21:10:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 15:35:36 ----D---- C:\Program Files (x86)\Codemasters
2013-10-09 15:35:35 ----A---- C:\Windows\SYSWOW64\MSOSS.DLL
2013-10-09 14:35:10 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 14:35:10 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 14:35:08 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 14:35:06 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 14:35:05 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 14:35:04 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 14:35:04 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 14:35:03 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 14:35:02 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 14:35:01 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 14:35:00 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 14:34:56 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 14:34:56 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 14:34:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 14:34:55 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 14:34:54 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 14:34:54 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 14:34:53 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 14:34:52 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 14:34:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 14:34:45 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:45 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 14:34:44 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 14:34:43 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 14:34:42 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 14:34:41 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-03 23:50:13 ----A---- C:\error.txt
2013-10-03 23:14:58 ----D---- C:\ProgramData\Package Cache
2013-10-02 19:27:31 ----D---- C:\ProgramData\LogMeIn
2013-10-02 19:26:31 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-27 16:04:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-27 16:04:11 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-27 16:03:54 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-09-27 16:02:51 ----D---- C:\ProgramData\PMB Files
2013-09-27 16:02:47 ----D---- C:\Program Files (x86)\Pando Networks
2013-09-27 16:02:20 ----D---- C:\Users\Filip\AppData\Roaming\Riot Games
2013-09-22 15:01:35 ----D---- C:\FTB
2013-09-22 15:00:12 ----D---- C:\Users\Filip\AppData\Roaming\ftblauncher
======List of files/folders modified in the last 1 month======
2013-10-21 22:22:22 ----D---- C:\Windows\Temp
2013-10-21 22:22:05 ----D---- C:\Users\Filip\AppData\Roaming\uTorrent
2013-10-21 22:21:37 ----D---- C:\Program Files (x86)\Origin
2013-10-21 22:11:46 ----D---- C:\Users\Filip\AppData\Roaming\TS3Client
2013-10-21 21:39:59 ----D---- C:\Program Files (x86)\Steam
2013-10-21 21:03:47 ----D---- C:\Windows\SysWOW64
2013-10-21 20:47:05 ----D---- C:\Windows
2013-10-21 20:46:29 ----HD---- C:\ProgramData
2013-10-21 20:46:29 ----D---- C:\Windows\Tasks
2013-10-21 20:07:26 ----D---- C:\Users\Filip\AppData\Roaming\.minecraft
2013-10-21 17:30:05 ----D---- C:\Windows\system32\config
2013-10-21 00:02:01 ----SHD---- C:\Windows\Installer
2013-10-21 00:02:00 ----SHD---- C:\Config.Msi
2013-10-20 23:47:24 ----RD---- C:\Program Files (x86)
2013-10-20 23:46:38 ----RSD---- C:\Windows\assembly
2013-10-20 23:45:32 ----SHD---- C:\System Volume Information
2013-10-20 23:42:12 ----D---- C:\ProgramData\Solidshield
2013-10-20 18:25:01 ----D---- C:\Windows\Logs
2013-10-20 17:13:30 ----D---- C:\Windows\System32
2013-10-20 16:03:35 ----RD---- C:\Program Files
2013-10-20 11:43:40 ----D---- C:\Windows\system32\drivers
2013-10-20 11:30:49 ----D---- C:\Windows\system32\NDF
2013-10-20 11:26:14 ----D---- C:\Windows\system32\DriverStore
2013-10-20 11:26:14 ----D---- C:\Windows\system32\catroot
2013-10-20 11:26:13 ----D---- C:\Windows\inf
2013-10-20 11:24:32 ----D---- C:\Windows\system32\Tasks
2013-10-20 11:19:31 ----D---- C:\ProgramData\DriverGenius
2013-10-20 11:09:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-20 10:08:50 ----D---- C:\Users\Filip\AppData\Roaming\Mozilla
2013-10-20 10:08:15 ----D---- C:\Windows\Prefetch
2013-10-19 15:33:09 ----D---- C:\Users\Filip\AppData\Roaming\Skype
2013-10-18 22:54:42 ----D---- C:\Program Files (x86)\Origin Games
2013-10-18 22:35:50 ----D---- C:\Windows\system32\catroot2
2013-10-14 16:01:45 ----RD---- C:\Program Files (x86)\Skype
2013-10-13 17:38:00 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-13 10:27:41 ----D---- C:\Users\Filip\AppData\Roaming\vlc
2013-10-13 10:27:15 ----SHD---- C:\$Recycle.Bin
2013-10-13 10:15:15 ----D---- C:\Windows\Panther
2013-10-13 10:15:05 ----D---- C:\Windows\debug
2013-10-12 21:59:15 ----D---- C:\ProgramData\Skype
2013-10-12 20:53:30 ----RSD---- C:\Windows\Fonts
2013-10-12 14:55:57 ----D---- C:\Windows\Microsoft.NET
2013-10-12 14:22:40 ----D---- C:\ProgramData\AMD
2013-10-12 14:22:33 ----D---- C:\Program Files (x86)\Common Files
2013-10-12 14:17:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-12 14:16:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-12 14:16:52 ----D---- C:\Windows\system32\cs-CZ
2013-10-12 14:13:12 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-12 14:13:12 ----D---- C:\Windows\system32\en-US
2013-10-12 11:00:01 ----D---- C:\Windows\rescache
2013-10-11 22:05:06 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-11 21:54:28 ----HD---- C:\Program Files (x86)\Temp
2013-10-11 20:42:00 ----D---- C:\Windows\winsxs
2013-10-11 20:38:29 ----D---- C:\Windows\SYSWOW64\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\wbem
2013-10-11 20:38:29 ----D---- C:\Windows\system32\drivers\en-US
2013-10-11 20:38:29 ----D---- C:\Windows\PolicyDefinitions
2013-10-09 23:09:46 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-09 23:09:45 ----D---- C:\Program Files\Internet Explorer
2013-10-09 23:09:42 ----D---- C:\Windows\AppPatch
2013-10-09 23:07:44 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-09 23:07:42 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 21:13:17 ----D---- C:\ProgramData\Microsoft Help
2013-10-09 21:07:34 ----D---- C:\Windows\system32\MRT
2013-10-09 21:05:43 ----A---- C:\Windows\system32\MRT.exe
2013-10-05 16:08:19 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-04 00:28:42 ----D---- C:\ProgramData\Origin
2013-10-01 14:37:57 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-30 17:41:03 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-09-28 17:30:39 ----D---- C:\FFOutput
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-06-27 189936]
R0 nvstor64;nvstor64; C:\Windows\system32\DRIVERS\nvstor64.sys [2010-04-09 244328]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-06-27 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-06-27 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-02 283200]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2013-05-13 76464]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-03-04 349416]
R3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2013-05-13 50864]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-10-22 2206864]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
S3 AVer330C875;AVer330C875; C:\Windows\system32\DRIVERS\AVer330C875.sys [2013-08-26 1520128]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/20/2007, 0.1.12.1; C:\Windows\system32\DRIVERS\libusb0.sys [2010-10-02 43456]
S3 LVRS64;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-09-21 351520]
S3 LVUVC64;Logitech Webcam C210(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-09-21 4763680]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pspdisp;pspdisp; C:\Windows\system32\DRIVERS\pspdisp_x64.sys [2011-01-18 4608]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2012-06-05 237968]
S3 ScreamBAudioSvc;ScreamBee Audio; C:\Windows\system32\drivers\ScreamingBAudio64.sys [2009-11-26 38992]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM); C:\Windows\system32\drivers\vasdDev.sys [2012-03-19 1454896]
S3 WinUSB;WinUSB driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-30 344064]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 AVerRECentral;AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [2013-08-15 369152]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-13 76888]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 146272]
R2 VIAKaraokeService;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-10-22 27768]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-10-01 5087584]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-09 565672]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-01 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-12 257416]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-04 116648]
S4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-01 2746704]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S4 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hraní her a pak Modrá Smrt!
Log je již OK. A teď se podíváme na tu modrou smrt. Otevřte adresář c:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašemu příštímu postu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hraní her a pak Modrá Smrt!
Váš problém se týká ovladače DirectX. Zkuste přeinstalovat. Může se ovšem jednat i o hw chybu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hraní her a pak Modrá Smrt!
Když jsem zkoušel nainstalovat DirectX 11 tak mi to napsalo chybu!
Moje GK: HD RADEON 7750
Moje GK: HD RADEON 7750
Přispějete na provoz fóra?