Dobrý den,
prosím Vás o pomoc (viz. hlavička)
Děkuji!!!
Zde je log:
---------------------------------------------------------------------------------------------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Zbyšek at 2014-11-13 08:45:12
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 41 GB (36%) free of 114 GB
Total RAM: 4049 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:45:16, on 13.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files (x86)\foobar2000\foobar2000.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Zbyšek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9422 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 8bb93f5c-ce2e-4a85-ad5d-6c79d916ef59 1
\??\C:\Windows\system32\conhost.exe "-10544769519677667332090351022475381808-896945537-213774623917691045321156566124
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
atieclxx
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1428427900-1836926853-1906783501-1951704428-1351148655-1572279801-142094288-1116567716
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe"
"C:\Windows\System32\Pdhd2Pan.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe"
"C:\Program Files (x86)\foobar2000\foobar2000.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4368.0.811216124\56957552" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16,44 --gpu-vendor-id=0x10de --gpu-device-id=0x0615 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="4368.2.1240744033\974196987" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="4368.3.978823705\1898638797" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="4368.6.1862636664\574958111" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4368.7.664543231\916279828" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/disable/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="4368.25.1742082381\934501704" /prefetch:673131151
C:\Windows\system32\msiexec.exe /V
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe"
"C:\Users\Zbyšek\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-09 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-09 211368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-20 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-20 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-05-04 500208]
"Pdhd2Pan.exe"=C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2460488]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2736128]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-08-11 7762712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-06-25 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ExpressFiles]
C:\Program Files (x86)\ExpressFiles\ExpressFiles.exe -tray []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncvspynSrv]
C:\Windows\inf\mncvspyn.vbe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pdhd2Pan.exe]
C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Zbyšek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-05-23 311616]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-02 767200]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\Display.exe
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=0
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-13 08:45:12 ----D---- C:\rsit
2014-11-12 08:36:49 ----A---- C:\Windows\system32\generaltel.dll
2014-11-12 08:36:49 ----A---- C:\Windows\system32\aepdu.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 08:36:48 ----A---- C:\Windows\system32\aeinv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 08:36:45 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 08:36:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieui.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\vbscript.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 08:36:33 ----A---- C:\Windows\system32\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\msi.dll
2014-11-12 08:36:32 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 08:36:32 ----A---- C:\Windows\system32\oleaut32.dll
2014-10-20 16:03:56 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-20 16:00:58 ----D---- C:\Program Files\SAMSUNG
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-16 07:53:48 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-10-16 07:53:48 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspcap64.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspbridge64.dll
2014-10-16 07:00:42 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-16 06:59:18 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-10-16 06:56:26 ----D---- C:\NVIDIA
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\mf.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winload.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\evr.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 07:55:14 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ci.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 07:55:12 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 07:55:11 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 07:54:41 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 07:54:35 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 07:54:35 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 07:54:33 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 07:54:33 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 07:54:28 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 07:54:27 ----A---- C:\Windows\SYSWOW64\mstscax.dll
======List of files/folders modified in the last 1 month======
2014-11-13 08:45:15 ----D---- C:\Program Files\trend micro
2014-11-13 08:45:12 ----D---- C:\Windows\Temp
2014-11-13 08:43:23 ----SHD---- C:\Windows\Installer
2014-11-13 08:43:23 ----SD---- C:\Users\Zbyšek\AppData\Roaming\Microsoft
2014-11-13 08:42:45 ----RD---- C:\Program Files (x86)
2014-11-13 08:42:45 ----HD---- C:\ProgramData
2014-11-13 08:42:45 ----D---- C:\Windows\SysWOW64
2014-11-13 08:20:40 ----D---- C:\Users\Zbyšek\AppData\Roaming\foobar2000
2014-11-13 07:49:47 ----D---- C:\Windows\System32
2014-11-13 07:49:47 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-13 07:43:45 ----RSD---- C:\Windows\assembly
2014-11-13 07:43:45 ----D---- C:\Windows\Microsoft.NET
2014-11-13 07:43:41 ----D---- C:\Windows\system32\Tasks
2014-11-13 07:43:36 ----A---- C:\Windows\ntbtlog.txt
2014-11-13 07:43:32 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-13 07:43:22 ----D---- C:\Windows\winsxs
2014-11-13 07:43:22 ----D---- C:\Windows\system32\config
2014-11-13 07:43:13 ----D---- C:\ProgramData\NVIDIA
2014-11-13 07:42:35 ----SD---- C:\Windows\system32\CompatTel
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\en-US
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Windows\system32\drivers
2014-11-13 07:42:35 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Program Files\Internet Explorer
2014-11-13 07:42:34 ----D---- C:\Windows\system32\en-US
2014-11-13 07:42:34 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 16:03:22 ----D---- C:\Windows\system32\MRT
2014-11-12 16:01:47 ----A---- C:\Windows\system32\MRT.exe
2014-11-12 10:27:14 ----D---- C:\Users\Zbyšek\AppData\Roaming\vlc
2014-11-12 09:19:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-12 08:36:27 ----D---- C:\Windows\system32\catroot2
2014-10-29 08:19:11 ----D---- C:\Windows\Tasks
2014-10-28 06:34:58 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-27 08:33:16 ----D---- C:\Temp
2014-10-27 08:33:16 ----A---- C:\Windows\GPU-Z.INI
2014-10-20 16:05:38 ----D---- C:\ProgramData\Oracle
2014-10-20 16:04:01 ----D---- C:\Program Files (x86)\Common Files
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-20 16:03:53 ----D---- C:\Program Files (x86)\Java
2014-10-20 16:00:58 ----RD---- C:\Program Files
2014-10-20 16:00:46 ----D---- C:\Windows\inf
2014-10-20 15:59:36 ----D---- C:\Windows\system32\DriverStore
2014-10-20 15:59:35 ----D---- C:\Windows\system32\catroot
2014-10-17 07:15:19 ----D---- C:\Windows
2014-10-16 08:32:17 ----D---- C:\Windows\rescache
2014-10-16 07:53:55 ----D---- C:\Program Files\NVIDIA Corporation
2014-10-16 07:52:31 ----D---- C:\ProgramData\NVIDIA Corporation
2014-10-16 07:22:21 ----D---- C:\Windows\Minidump
2014-10-16 07:05:22 ----D---- C:\Windows\LiveKernelReports
2014-10-16 07:01:01 ----D---- C:\Windows\Logs
2014-10-16 07:01:01 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-16 06:59:24 ----RD---- C:\Users
2014-10-16 06:47:32 ----SHD---- C:\Boot
2014-10-16 06:46:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Boot
2014-10-16 06:46:39 ----D---- C:\Program Files\Windows Media Player
2014-10-16 06:46:39 ----D---- C:\Program Files (x86)\Windows Media Player
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2013-11-06 83176]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2013-11-06 43240]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-11-25 120408]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-12-07 711712]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2013-04-06 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-04 14464]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO64A.SYS [2013-10-17 31136]
R1 Pdhd2.sys;Service for Prodigy HD2 EWDM; C:\Windows\system32\DRIVERS\Pdhd2.sys [2009-10-29 51296]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-11-04 59648]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2011-12-07 81952]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2013-05-28 106816]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2013-05-28 227648]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2013-12-16 138456]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2013-12-16 422616]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 19272]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 Pdhd2Wdm.sys;Service for Prodigy HD2 WDM; C:\Windows\system32\DRIVERS\Pdhd2Wdm.sys [2009-10-29 41568]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-06-05 936664]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-08-29 58536]
S2 MLPTDR_B;MLPTDR_B; \??\C:\Windows\syswow64\MLPTDR_B.SYS [2006-12-08 20064]
S3 ALSysIO;ALSysIO; \??\E:\Temp\ALSysIO64.sys []
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-02 628224]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-20 94720]
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 cmudaxp;ASUS Xonar D2 Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys []
S3 cpuz130;cpuz130; \??\E:\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 CrystalCpuInfo;CrystalCpuInfo; \??\E:\Temp\CpuInfo64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-14 196384]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-02 240128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-02 344064]
R2 APC UPS Service;APC UPS Service; C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe [2007-07-19 689408]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [2013-05-14 936728]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1148744]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1795912]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19439944]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2013-10-15 520416]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 114688]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-02-08 569024]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-29 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nějaká havět - chrome startuje pomalu - cca 20-40s
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
AHOJ
prescanuj PC s MBAM
prescanuj PC s MBAM
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
OK!
Nainstalován MBAM a proskenován PC.
Výsledek: Nic nenašel!
Tady je log po skenu a restartu PC:
-----------------------------------------------------------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Zbyšek at 2014-11-13 09:46:49
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 41 GB (36%) free of 114 GB
Total RAM: 4049 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:46:50, on 13.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe
C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\trend micro\Zbyšek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9256 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 8bb93f5c-ce2e-4a85-ad5d-6c79d916ef59 1
\??\C:\Windows\system32\conhost.exe "156115884-1638621709-11818494574561043591994808699354916121945472993-60533904
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "336534501629634228-2418017233737273541665328937-162936168997915270-689522051
C:\Windows\system32\userinit.exe
taskeng.exe {D055C286-D46E-40E9-8C79-8C2657F1F6C9}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskeng.exe {1F3F9360-89A3-42B8-83CB-2514E3FDD10E}
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\Pdhd2Pan.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe"
"C:\Users\Zbyšek\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-09 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-09 211368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-20 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-20 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-05-04 500208]
"Pdhd2Pan.exe"=C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2460488]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2736128]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-08-11 7762712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-06-25 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ExpressFiles]
C:\Program Files (x86)\ExpressFiles\ExpressFiles.exe -tray []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncvspynSrv]
C:\Windows\inf\mncvspyn.vbe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pdhd2Pan.exe]
C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Zbyšek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-05-23 311616]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-02 767200]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\Display.exe
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=0
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-13 08:58:13 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-11-13 08:57:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-11-13 08:45:12 ----D---- C:\rsit
2014-11-12 08:36:49 ----A---- C:\Windows\system32\generaltel.dll
2014-11-12 08:36:49 ----A---- C:\Windows\system32\aepdu.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 08:36:48 ----A---- C:\Windows\system32\aeinv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 08:36:45 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 08:36:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieui.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\vbscript.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 08:36:33 ----A---- C:\Windows\system32\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\msi.dll
2014-11-12 08:36:32 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 08:36:32 ----A---- C:\Windows\system32\oleaut32.dll
2014-10-20 16:03:56 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-20 16:00:58 ----D---- C:\Program Files\SAMSUNG
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-16 07:53:48 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-10-16 07:53:48 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspcap64.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspbridge64.dll
2014-10-16 07:00:42 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-16 06:59:18 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-10-16 06:56:26 ----D---- C:\NVIDIA
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\mf.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winload.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\evr.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 07:55:14 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ci.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 07:55:12 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 07:55:11 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 07:54:41 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 07:54:35 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 07:54:35 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 07:54:33 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 07:54:33 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 07:54:28 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 07:54:27 ----A---- C:\Windows\SYSWOW64\mstscax.dll
======List of files/folders modified in the last 1 month======
2014-11-13 09:46:50 ----D---- C:\Program Files\trend micro
2014-11-13 09:46:34 ----D---- C:\Windows\system32\Tasks
2014-11-13 09:46:33 ----D---- C:\Windows\Temp
2014-11-13 09:46:32 ----A---- C:\Windows\ntbtlog.txt
2014-11-13 09:46:30 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-13 09:46:18 ----D---- C:\ProgramData\NVIDIA
2014-11-13 09:45:21 ----D---- C:\Users\Zbyšek\AppData\Roaming\foobar2000
2014-11-13 09:35:33 ----D---- C:\Windows\rescache
2014-11-13 09:07:23 ----D---- C:\Windows\Microsoft.NET
2014-11-13 09:06:18 ----RSD---- C:\Windows\assembly
2014-11-13 08:58:13 ----D---- C:\Windows\system32\drivers
2014-11-13 08:57:53 ----RD---- C:\Program Files (x86)
2014-11-13 08:43:23 ----SHD---- C:\Windows\Installer
2014-11-13 08:43:23 ----SD---- C:\Users\Zbyšek\AppData\Roaming\Microsoft
2014-11-13 08:42:45 ----HD---- C:\ProgramData
2014-11-13 08:42:45 ----D---- C:\Windows\SysWOW64
2014-11-13 08:04:13 ----D---- C:\Windows\system32\config
2014-11-13 07:49:47 ----D---- C:\Windows\System32
2014-11-13 07:49:47 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-13 07:43:22 ----D---- C:\Windows\winsxs
2014-11-13 07:42:35 ----SD---- C:\Windows\system32\CompatTel
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\en-US
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Program Files\Internet Explorer
2014-11-13 07:42:34 ----D---- C:\Windows\system32\en-US
2014-11-13 07:42:34 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 16:03:22 ----D---- C:\Windows\system32\MRT
2014-11-12 16:01:47 ----A---- C:\Windows\system32\MRT.exe
2014-11-12 10:27:14 ----D---- C:\Users\Zbyšek\AppData\Roaming\vlc
2014-11-12 09:19:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-12 08:36:27 ----D---- C:\Windows\system32\catroot2
2014-10-29 08:19:11 ----D---- C:\Windows\Tasks
2014-10-28 06:34:58 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-27 08:33:16 ----D---- C:\Temp
2014-10-27 08:33:16 ----A---- C:\Windows\GPU-Z.INI
2014-10-20 16:05:38 ----D---- C:\ProgramData\Oracle
2014-10-20 16:04:01 ----D---- C:\Program Files (x86)\Common Files
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-20 16:03:53 ----D---- C:\Program Files (x86)\Java
2014-10-20 16:00:58 ----RD---- C:\Program Files
2014-10-20 16:00:46 ----D---- C:\Windows\inf
2014-10-20 15:59:36 ----D---- C:\Windows\system32\DriverStore
2014-10-20 15:59:35 ----D---- C:\Windows\system32\catroot
2014-10-17 07:15:19 ----D---- C:\Windows
2014-10-16 07:53:55 ----D---- C:\Program Files\NVIDIA Corporation
2014-10-16 07:52:31 ----D---- C:\ProgramData\NVIDIA Corporation
2014-10-16 07:22:21 ----D---- C:\Windows\Minidump
2014-10-16 07:05:22 ----D---- C:\Windows\LiveKernelReports
2014-10-16 07:01:01 ----D---- C:\Windows\Logs
2014-10-16 07:01:01 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-16 06:59:24 ----RD---- C:\Users
2014-10-16 06:47:32 ----SHD---- C:\Boot
2014-10-16 06:46:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Boot
2014-10-16 06:46:39 ----D---- C:\Program Files\Windows Media Player
2014-10-16 06:46:39 ----D---- C:\Program Files (x86)\Windows Media Player
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2013-11-06 83176]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2013-11-06 43240]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-11-25 120408]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-12-07 711712]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2013-04-06 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-04 14464]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO64A.SYS [2013-10-17 31136]
R1 Pdhd2.sys;Service for Prodigy HD2 EWDM; C:\Windows\system32\DRIVERS\Pdhd2.sys [2009-10-29 51296]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-11-04 59648]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2011-12-07 81952]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2013-05-28 106816]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2013-05-28 227648]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2013-12-16 138456]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2013-12-16 422616]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-10-01 25816]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 19272]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 Pdhd2Wdm.sys;Service for Prodigy HD2 WDM; C:\Windows\system32\DRIVERS\Pdhd2Wdm.sys [2009-10-29 41568]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-06-05 936664]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-08-29 58536]
S2 MLPTDR_B;MLPTDR_B; \??\C:\Windows\syswow64\MLPTDR_B.SYS [2006-12-08 20064]
S3 ALSysIO;ALSysIO; \??\E:\Temp\ALSysIO64.sys []
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-02 628224]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-20 94720]
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 cmudaxp;ASUS Xonar D2 Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys []
S3 cpuz130;cpuz130; \??\E:\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 CrystalCpuInfo;CrystalCpuInfo; \??\E:\Temp\CpuInfo64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-11-13 129752]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-10-01 63704]
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-14 196384]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-02 240128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-02 344064]
R2 APC UPS Service;APC UPS Service; C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe [2007-07-19 689408]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [2013-05-14 936728]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1148744]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-01 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1795912]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19439944]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-01 968504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2013-10-15 520416]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 114688]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-02-08 569024]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-29 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Nainstalován MBAM a proskenován PC.
Výsledek: Nic nenašel!
Tady je log po skenu a restartu PC:
-----------------------------------------------------------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Zbyšek at 2014-11-13 09:46:49
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 41 GB (36%) free of 114 GB
Total RAM: 4049 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:46:50, on 13.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe
C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\trend micro\Zbyšek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9256 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 8bb93f5c-ce2e-4a85-ad5d-6c79d916ef59 1
\??\C:\Windows\system32\conhost.exe "156115884-1638621709-11818494574561043591994808699354916121945472993-60533904
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "336534501629634228-2418017233737273541665328937-162936168997915270-689522051
C:\Windows\system32\userinit.exe
taskeng.exe {D055C286-D46E-40E9-8C79-8C2657F1F6C9}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskeng.exe {1F3F9360-89A3-42B8-83CB-2514E3FDD10E}
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\Pdhd2Pan.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe"
"C:\Users\Zbyšek\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-09 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-09 211368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-20 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-20 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-05-04 500208]
"Pdhd2Pan.exe"=C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2460488]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2736128]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-08-11 7762712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-06-25 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ExpressFiles]
C:\Program Files (x86)\ExpressFiles\ExpressFiles.exe -tray []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mncvspynSrv]
C:\Windows\inf\mncvspyn.vbe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pdhd2Pan.exe]
C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Zbyšek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-05-23 311616]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-02 767200]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\Display.exe
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=0
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-13 08:58:13 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-11-13 08:57:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-11-13 08:45:12 ----D---- C:\rsit
2014-11-12 08:36:49 ----A---- C:\Windows\system32\generaltel.dll
2014-11-12 08:36:49 ----A---- C:\Windows\system32\aepdu.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 08:36:48 ----A---- C:\Windows\system32\aeinv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 08:36:45 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 08:36:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieui.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\vbscript.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 08:36:33 ----A---- C:\Windows\system32\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\msi.dll
2014-11-12 08:36:32 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 08:36:32 ----A---- C:\Windows\system32\oleaut32.dll
2014-10-20 16:03:56 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-20 16:00:58 ----D---- C:\Program Files\SAMSUNG
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-16 07:53:48 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-10-16 07:53:48 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspcap64.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspbridge64.dll
2014-10-16 07:00:42 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-16 06:59:18 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-10-16 06:56:26 ----D---- C:\NVIDIA
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\mf.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winload.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\evr.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 07:55:14 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ci.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 07:55:12 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 07:55:11 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 07:54:41 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 07:54:35 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 07:54:35 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 07:54:33 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 07:54:33 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 07:54:28 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 07:54:27 ----A---- C:\Windows\SYSWOW64\mstscax.dll
======List of files/folders modified in the last 1 month======
2014-11-13 09:46:50 ----D---- C:\Program Files\trend micro
2014-11-13 09:46:34 ----D---- C:\Windows\system32\Tasks
2014-11-13 09:46:33 ----D---- C:\Windows\Temp
2014-11-13 09:46:32 ----A---- C:\Windows\ntbtlog.txt
2014-11-13 09:46:30 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-13 09:46:18 ----D---- C:\ProgramData\NVIDIA
2014-11-13 09:45:21 ----D---- C:\Users\Zbyšek\AppData\Roaming\foobar2000
2014-11-13 09:35:33 ----D---- C:\Windows\rescache
2014-11-13 09:07:23 ----D---- C:\Windows\Microsoft.NET
2014-11-13 09:06:18 ----RSD---- C:\Windows\assembly
2014-11-13 08:58:13 ----D---- C:\Windows\system32\drivers
2014-11-13 08:57:53 ----RD---- C:\Program Files (x86)
2014-11-13 08:43:23 ----SHD---- C:\Windows\Installer
2014-11-13 08:43:23 ----SD---- C:\Users\Zbyšek\AppData\Roaming\Microsoft
2014-11-13 08:42:45 ----HD---- C:\ProgramData
2014-11-13 08:42:45 ----D---- C:\Windows\SysWOW64
2014-11-13 08:04:13 ----D---- C:\Windows\system32\config
2014-11-13 07:49:47 ----D---- C:\Windows\System32
2014-11-13 07:49:47 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-13 07:43:22 ----D---- C:\Windows\winsxs
2014-11-13 07:42:35 ----SD---- C:\Windows\system32\CompatTel
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\en-US
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Program Files\Internet Explorer
2014-11-13 07:42:34 ----D---- C:\Windows\system32\en-US
2014-11-13 07:42:34 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 16:03:22 ----D---- C:\Windows\system32\MRT
2014-11-12 16:01:47 ----A---- C:\Windows\system32\MRT.exe
2014-11-12 10:27:14 ----D---- C:\Users\Zbyšek\AppData\Roaming\vlc
2014-11-12 09:19:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-12 08:36:27 ----D---- C:\Windows\system32\catroot2
2014-10-29 08:19:11 ----D---- C:\Windows\Tasks
2014-10-28 06:34:58 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-27 08:33:16 ----D---- C:\Temp
2014-10-27 08:33:16 ----A---- C:\Windows\GPU-Z.INI
2014-10-20 16:05:38 ----D---- C:\ProgramData\Oracle
2014-10-20 16:04:01 ----D---- C:\Program Files (x86)\Common Files
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-20 16:03:53 ----D---- C:\Program Files (x86)\Java
2014-10-20 16:00:58 ----RD---- C:\Program Files
2014-10-20 16:00:46 ----D---- C:\Windows\inf
2014-10-20 15:59:36 ----D---- C:\Windows\system32\DriverStore
2014-10-20 15:59:35 ----D---- C:\Windows\system32\catroot
2014-10-17 07:15:19 ----D---- C:\Windows
2014-10-16 07:53:55 ----D---- C:\Program Files\NVIDIA Corporation
2014-10-16 07:52:31 ----D---- C:\ProgramData\NVIDIA Corporation
2014-10-16 07:22:21 ----D---- C:\Windows\Minidump
2014-10-16 07:05:22 ----D---- C:\Windows\LiveKernelReports
2014-10-16 07:01:01 ----D---- C:\Windows\Logs
2014-10-16 07:01:01 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-16 06:59:24 ----RD---- C:\Users
2014-10-16 06:47:32 ----SHD---- C:\Boot
2014-10-16 06:46:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Boot
2014-10-16 06:46:39 ----D---- C:\Program Files\Windows Media Player
2014-10-16 06:46:39 ----D---- C:\Program Files (x86)\Windows Media Player
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2013-11-06 83176]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2013-11-06 43240]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-11-25 120408]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-12-07 711712]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2013-04-06 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-04 14464]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO64A.SYS [2013-10-17 31136]
R1 Pdhd2.sys;Service for Prodigy HD2 EWDM; C:\Windows\system32\DRIVERS\Pdhd2.sys [2009-10-29 51296]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-11-04 59648]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2011-12-07 81952]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2013-05-28 106816]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2013-05-28 227648]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2013-12-16 138456]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2013-12-16 422616]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-10-01 25816]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 19272]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 Pdhd2Wdm.sys;Service for Prodigy HD2 WDM; C:\Windows\system32\DRIVERS\Pdhd2Wdm.sys [2009-10-29 41568]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-06-05 936664]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-08-29 58536]
S2 MLPTDR_B;MLPTDR_B; \??\C:\Windows\syswow64\MLPTDR_B.SYS [2006-12-08 20064]
S3 ALSysIO;ALSysIO; \??\E:\Temp\ALSysIO64.sys []
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-02 628224]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-20 94720]
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 cmudaxp;ASUS Xonar D2 Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys []
S3 cpuz130;cpuz130; \??\E:\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 CrystalCpuInfo;CrystalCpuInfo; \??\E:\Temp\CpuInfo64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-11-13 129752]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-10-01 63704]
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-14 196384]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-02 240128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-02 344064]
R2 APC UPS Service;APC UPS Service; C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe [2007-07-19 689408]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [2013-05-14 936728]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1148744]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-01 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1795912]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19439944]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-01 968504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2013-10-15 520416]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 114688]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-02-08 569024]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-29 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
1, spust regedit a daj hladat klucove slovo mncvspynSrv - najdeny kluc nechaj zmazat
2, citat:
TFC http://oldtimer.geekstogo.com/TFC.exe
• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte
3, vloz log FRST
2, citat:
TFC http://oldtimer.geekstogo.com/TFC.exe
• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte
3, vloz log FRST
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
Klíč jsem smazal.
Utilitu nainstaloval a projel PC - odstranilo to cca 700 mb dat.
Restart a tady je log po něm:
--------------------------------------------------------------------------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Zbyšek at 2014-11-13 10:00:27
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 42 GB (37%) free of 114 GB
Total RAM: 4049 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:00:28, on 13.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe
C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Zbyšek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9562 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 8bb93f5c-ce2e-4a85-ad5d-6c79d916ef59 1
\??\C:\Windows\system32\conhost.exe "-13034679911982655221-16403818021729669241156000085-8632157327029262881144128458
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "197901841466988263-11157582821618475181-1989334661883900658-20057044981318635703
"taskhost.exe"
taskeng.exe {CEE55473-1F95-4E7C-8B2E-55A2D404B86B}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskeng.exe {11FF3484-EDC2-48A6-92A0-5F90D9736C66}
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\Pdhd2Pan.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3440.0.1903779649\584167689" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16,44 --gpu-vendor-id=0x10de --gpu-device-id=0x0615 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3440.2.889659165\1234410890" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3440.3.928164310\1671431328" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3440.5.235445929\2111146437" /prefetch:673131151
"C:\Users\Zbyšek\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-09 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-09 211368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-20 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-20 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-05-04 500208]
"Pdhd2Pan.exe"=C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2460488]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2736128]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-08-11 7762712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-06-25 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ExpressFiles]
C:\Program Files (x86)\ExpressFiles\ExpressFiles.exe -tray []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pdhd2Pan.exe]
C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Zbyšek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-05-23 311616]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-02 767200]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\Display.exe
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=0
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-13 08:58:13 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-11-13 08:57:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-11-13 08:45:12 ----D---- C:\rsit
2014-11-12 08:36:49 ----A---- C:\Windows\system32\generaltel.dll
2014-11-12 08:36:49 ----A---- C:\Windows\system32\aepdu.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 08:36:48 ----A---- C:\Windows\system32\aeinv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 08:36:45 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 08:36:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieui.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\vbscript.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 08:36:33 ----A---- C:\Windows\system32\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\msi.dll
2014-11-12 08:36:32 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 08:36:32 ----A---- C:\Windows\system32\oleaut32.dll
2014-10-20 16:03:56 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-20 16:00:58 ----D---- C:\Program Files\SAMSUNG
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-16 07:53:48 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-10-16 07:53:48 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspcap64.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspbridge64.dll
2014-10-16 07:00:42 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-16 06:59:18 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-10-16 06:56:26 ----D---- C:\NVIDIA
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\mf.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winload.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\evr.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 07:55:14 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ci.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 07:55:12 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 07:55:11 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 07:54:41 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 07:54:35 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 07:54:35 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 07:54:33 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 07:54:33 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 07:54:28 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 07:54:27 ----A---- C:\Windows\SYSWOW64\mstscax.dll
======List of files/folders modified in the last 1 month======
2014-11-13 10:00:28 ----D---- C:\Program Files\trend micro
2014-11-13 10:00:03 ----D---- C:\Windows\system32\Tasks
2014-11-13 10:00:01 ----D---- C:\Windows\Temp
2014-11-13 10:00:00 ----A---- C:\Windows\ntbtlog.txt
2014-11-13 09:59:58 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-13 09:59:45 ----D---- C:\ProgramData\NVIDIA
2014-11-13 09:58:01 ----D---- C:\Windows\SysWOW64
2014-11-13 09:58:01 ----D---- C:\Windows\System32
2014-11-13 09:53:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-13 09:49:14 ----D---- C:\Windows\system32\config
2014-11-13 09:45:21 ----D---- C:\Users\Zbyšek\AppData\Roaming\foobar2000
2014-11-13 09:35:33 ----D---- C:\Windows\rescache
2014-11-13 09:07:23 ----D---- C:\Windows\Microsoft.NET
2014-11-13 09:06:18 ----RSD---- C:\Windows\assembly
2014-11-13 08:58:13 ----D---- C:\Windows\system32\drivers
2014-11-13 08:57:53 ----RD---- C:\Program Files (x86)
2014-11-13 08:43:23 ----SHD---- C:\Windows\Installer
2014-11-13 08:43:23 ----SD---- C:\Users\Zbyšek\AppData\Roaming\Microsoft
2014-11-13 08:42:45 ----HD---- C:\ProgramData
2014-11-13 07:43:22 ----D---- C:\Windows\winsxs
2014-11-13 07:42:35 ----SD---- C:\Windows\system32\CompatTel
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\en-US
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Program Files\Internet Explorer
2014-11-13 07:42:34 ----D---- C:\Windows\system32\en-US
2014-11-13 07:42:34 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 16:03:22 ----D---- C:\Windows\system32\MRT
2014-11-12 16:01:47 ----A---- C:\Windows\system32\MRT.exe
2014-11-12 10:27:14 ----D---- C:\Users\Zbyšek\AppData\Roaming\vlc
2014-11-12 09:19:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-12 08:36:27 ----D---- C:\Windows\system32\catroot2
2014-10-29 08:19:11 ----D---- C:\Windows\Tasks
2014-10-28 06:34:58 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-27 08:33:16 ----D---- C:\Temp
2014-10-27 08:33:16 ----A---- C:\Windows\GPU-Z.INI
2014-10-20 16:05:38 ----D---- C:\ProgramData\Oracle
2014-10-20 16:04:01 ----D---- C:\Program Files (x86)\Common Files
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-20 16:03:53 ----D---- C:\Program Files (x86)\Java
2014-10-20 16:00:58 ----RD---- C:\Program Files
2014-10-20 16:00:46 ----D---- C:\Windows\inf
2014-10-20 15:59:36 ----D---- C:\Windows\system32\DriverStore
2014-10-20 15:59:35 ----D---- C:\Windows\system32\catroot
2014-10-17 07:15:19 ----D---- C:\Windows
2014-10-16 07:53:55 ----D---- C:\Program Files\NVIDIA Corporation
2014-10-16 07:52:31 ----D---- C:\ProgramData\NVIDIA Corporation
2014-10-16 07:22:21 ----D---- C:\Windows\Minidump
2014-10-16 07:05:22 ----D---- C:\Windows\LiveKernelReports
2014-10-16 07:01:01 ----D---- C:\Windows\Logs
2014-10-16 07:01:01 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-16 06:59:24 ----RD---- C:\Users
2014-10-16 06:47:32 ----SHD---- C:\Boot
2014-10-16 06:46:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Boot
2014-10-16 06:46:39 ----D---- C:\Program Files\Windows Media Player
2014-10-16 06:46:39 ----D---- C:\Program Files (x86)\Windows Media Player
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2013-11-06 83176]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2013-11-06 43240]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-11-25 120408]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-12-07 711712]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2013-04-06 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-04 14464]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO64A.SYS [2013-10-17 31136]
R1 Pdhd2.sys;Service for Prodigy HD2 EWDM; C:\Windows\system32\DRIVERS\Pdhd2.sys [2009-10-29 51296]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-11-04 59648]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2011-12-07 81952]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2013-05-28 106816]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2013-05-28 227648]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2013-12-16 138456]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2013-12-16 422616]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-10-01 25816]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 19272]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 Pdhd2Wdm.sys;Service for Prodigy HD2 WDM; C:\Windows\system32\DRIVERS\Pdhd2Wdm.sys [2009-10-29 41568]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-06-05 936664]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-08-29 58536]
S2 MLPTDR_B;MLPTDR_B; \??\C:\Windows\syswow64\MLPTDR_B.SYS [2006-12-08 20064]
S3 ALSysIO;ALSysIO; \??\E:\Temp\ALSysIO64.sys []
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-02 628224]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-20 94720]
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 cmudaxp;ASUS Xonar D2 Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys []
S3 cpuz130;cpuz130; \??\E:\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 CrystalCpuInfo;CrystalCpuInfo; \??\E:\Temp\CpuInfo64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-11-13 129752]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-10-01 63704]
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-14 196384]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-02 240128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-02 344064]
R2 APC UPS Service;APC UPS Service; C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe [2007-07-19 689408]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [2013-05-14 936728]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1148744]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-01 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1795912]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19439944]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-01 968504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2013-10-15 520416]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 114688]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-02-08 569024]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-29 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Utilitu nainstaloval a projel PC - odstranilo to cca 700 mb dat.
Restart a tady je log po něm:
--------------------------------------------------------------------------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Zbyšek at 2014-11-13 10:00:27
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 42 GB (37%) free of 114 GB
Total RAM: 4049 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:00:28, on 13.11.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17420)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe
C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Zbyšek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9562 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 8bb93f5c-ce2e-4a85-ad5d-6c79d916ef59 1
\??\C:\Windows\system32\conhost.exe "-13034679911982655221-16403818021729669241156000085-8632157327029262881144128458
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "197901841466988263-11157582821618475181-1989334661883900658-20057044981318635703
"taskhost.exe"
taskeng.exe {CEE55473-1F95-4E7C-8B2E-55A2D404B86B}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskeng.exe {11FF3484-EDC2-48A6-92A0-5F90D9736C66}
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\Pdhd2Pan.exe"
"C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3440.0.1903779649\584167689" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16,44 --gpu-vendor-id=0x10de --gpu-device-id=0x0615 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4052 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3440.2.889659165\1234410890" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3440.3.928164310\1671431328" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutoReloadExperiment/Enabled/AutoReloadVisibleOnlyExperiment/Enabled/BrowserBlacklist/Enabled/DomRel-Enable/control/EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SDCH/EnabledAll/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_21/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/group_01/VoiceTrigger/Install/" --renderer-print-preview --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --enable-delegated-renderer --channel="3440.5.235445929\2111146437" /prefetch:673131151
"C:\Users\Zbyšek\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-09 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-09 211368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-20 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-20 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-05-04 500208]
"Pdhd2Pan.exe"=C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
"NUSB3MON"=C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-09-17 2460488]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-09-17 2799784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2736128]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-08-11 7762712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2010-06-25 107816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ExpressFiles]
C:\Program Files (x86)\ExpressFiles\ExpressFiles.exe -tray []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pdhd2Pan.exe]
C:\Windows\system32\Pdhd2Pan.exe [2009-10-29 3499616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Zbyšek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [2014-05-23 311616]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-02 767200]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
APC UPS Status.lnk - C:\Program Files (x86)\APC\APC PowerChute Personal Edition\Display.exe
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=0
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2014-11-13 08:58:13 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-11-13 08:57:53 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-11-13 08:57:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-11-13 08:45:12 ----D---- C:\rsit
2014-11-12 08:36:49 ----A---- C:\Windows\system32\generaltel.dll
2014-11-12 08:36:49 ----A---- C:\Windows\system32\aepdu.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\termsrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\msaudite.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\lsasrv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-11-12 08:36:48 ----A---- C:\Windows\system32\aeinv.dll
2014-11-12 08:36:48 ----A---- C:\Windows\system32\adtschema.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-11-12 08:36:46 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\iernonce.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-11-12 08:36:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-11-12 08:36:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\urlmon.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 08:36:45 ----A---- C:\Windows\system32\msfeeds.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\iedkcs32.dll
2014-11-12 08:36:45 ----A---- C:\Windows\system32\dxtrans.dll
2014-11-12 08:36:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iesetup.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\iertutil.dll
2014-11-12 08:36:44 ----A---- C:\Windows\system32\ieapfltr.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-11-12 08:36:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\jsproxy.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieUnatt.exe
2014-11-12 08:36:43 ----A---- C:\Windows\system32\ieui.dll
2014-11-12 08:36:43 ----A---- C:\Windows\system32\dxtmsft.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\wininet.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\vbscript.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\mshtmled.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9diag.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\jscript9.dll
2014-11-12 08:36:42 ----A---- C:\Windows\system32\ieframe.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\msrating.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-11-12 08:36:41 ----A---- C:\Windows\system32\mshtml.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3r.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\msxml3.dll
2014-11-12 08:36:36 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\wdigest.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\TSpkg.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\schannel.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\ncrypt.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\msv1_0.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\kerberos.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\EncDump.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\credssp.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\audiosrv.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioSes.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-11-12 08:36:35 ----A---- C:\Windows\system32\AudioEng.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\win32k.sys
2014-11-12 08:36:33 ----A---- C:\Windows\system32\packager.dll
2014-11-12 08:36:33 ----A---- C:\Windows\system32\msi.dll
2014-11-12 08:36:32 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-11-12 08:36:32 ----A---- C:\Windows\system32\oleaut32.dll
2014-10-20 16:03:56 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-10-20 16:00:58 ----D---- C:\Program Files\SAMSUNG
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudmdm.sys
2014-10-20 15:59:35 ----A---- C:\Windows\system32\drivers\ssudbus.sys
2014-10-16 07:53:48 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-10-16 07:53:48 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-10-16 07:01:01 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspcap64.dll
2014-10-16 07:01:01 ----A---- C:\Windows\system32\nvspbridge64.dll
2014-10-16 07:00:42 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-10-16 06:59:18 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-10-16 06:56:26 ----D---- C:\NVIDIA
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 07:55:19 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 07:55:17 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 07:55:16 ----A---- C:\Windows\system32\mf.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-10-15 07:55:15 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-10-15 07:55:14 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\winload.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 07:55:14 ----A---- C:\Windows\system32\evr.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 07:55:14 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 07:55:14 ----A---- C:\Windows\system32\ci.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\evr.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\srcore.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 07:55:13 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\srclient.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rstrui.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 07:55:12 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 07:55:12 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 07:55:11 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-15 07:54:41 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 07:54:35 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-10-15 07:54:35 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 07:54:33 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 07:54:33 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 07:54:33 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 07:54:28 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 07:54:27 ----A---- C:\Windows\SYSWOW64\mstscax.dll
======List of files/folders modified in the last 1 month======
2014-11-13 10:00:28 ----D---- C:\Program Files\trend micro
2014-11-13 10:00:03 ----D---- C:\Windows\system32\Tasks
2014-11-13 10:00:01 ----D---- C:\Windows\Temp
2014-11-13 10:00:00 ----A---- C:\Windows\ntbtlog.txt
2014-11-13 09:59:58 ----D---- C:\Program Files\SUPERAntiSpyware
2014-11-13 09:59:45 ----D---- C:\ProgramData\NVIDIA
2014-11-13 09:58:01 ----D---- C:\Windows\SysWOW64
2014-11-13 09:58:01 ----D---- C:\Windows\System32
2014-11-13 09:53:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-13 09:49:14 ----D---- C:\Windows\system32\config
2014-11-13 09:45:21 ----D---- C:\Users\Zbyšek\AppData\Roaming\foobar2000
2014-11-13 09:35:33 ----D---- C:\Windows\rescache
2014-11-13 09:07:23 ----D---- C:\Windows\Microsoft.NET
2014-11-13 09:06:18 ----RSD---- C:\Windows\assembly
2014-11-13 08:58:13 ----D---- C:\Windows\system32\drivers
2014-11-13 08:57:53 ----RD---- C:\Program Files (x86)
2014-11-13 08:43:23 ----SHD---- C:\Windows\Installer
2014-11-13 08:43:23 ----SD---- C:\Users\Zbyšek\AppData\Roaming\Microsoft
2014-11-13 08:42:45 ----HD---- C:\ProgramData
2014-11-13 07:43:22 ----D---- C:\Windows\winsxs
2014-11-13 07:42:35 ----SD---- C:\Windows\system32\CompatTel
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\en-US
2014-11-13 07:42:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Windows\system32\cs-CZ
2014-11-13 07:42:35 ----D---- C:\Program Files\Internet Explorer
2014-11-13 07:42:34 ----D---- C:\Windows\system32\en-US
2014-11-13 07:42:34 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-12 16:03:22 ----D---- C:\Windows\system32\MRT
2014-11-12 16:01:47 ----A---- C:\Windows\system32\MRT.exe
2014-11-12 10:27:14 ----D---- C:\Users\Zbyšek\AppData\Roaming\vlc
2014-11-12 09:19:05 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-11-12 08:36:27 ----D---- C:\Windows\system32\catroot2
2014-10-29 08:19:11 ----D---- C:\Windows\Tasks
2014-10-28 06:34:58 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-27 08:33:16 ----D---- C:\Temp
2014-10-27 08:33:16 ----A---- C:\Windows\GPU-Z.INI
2014-10-20 16:05:38 ----D---- C:\ProgramData\Oracle
2014-10-20 16:04:01 ----D---- C:\Program Files (x86)\Common Files
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-10-20 16:03:54 ----A---- C:\Windows\SYSWOW64\java.exe
2014-10-20 16:03:53 ----D---- C:\Program Files (x86)\Java
2014-10-20 16:00:58 ----RD---- C:\Program Files
2014-10-20 16:00:46 ----D---- C:\Windows\inf
2014-10-20 15:59:36 ----D---- C:\Windows\system32\DriverStore
2014-10-20 15:59:35 ----D---- C:\Windows\system32\catroot
2014-10-17 07:15:19 ----D---- C:\Windows
2014-10-16 07:53:55 ----D---- C:\Program Files\NVIDIA Corporation
2014-10-16 07:52:31 ----D---- C:\ProgramData\NVIDIA Corporation
2014-10-16 07:22:21 ----D---- C:\Windows\Minidump
2014-10-16 07:05:22 ----D---- C:\Windows\LiveKernelReports
2014-10-16 07:01:01 ----D---- C:\Windows\Logs
2014-10-16 07:01:01 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-10-16 06:59:24 ----RD---- C:\Users
2014-10-16 06:47:32 ----SHD---- C:\Boot
2014-10-16 06:46:39 ----D---- C:\Windows\SYSWOW64\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Dism
2014-10-16 06:46:39 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-16 06:46:39 ----D---- C:\Windows\system32\Boot
2014-10-16 06:46:39 ----D---- C:\Program Files\Windows Media Player
2014-10-16 06:46:39 ----D---- C:\Program Files (x86)\Windows Media Player
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2013-11-06 83176]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2013-11-06 43240]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-11-25 120408]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-12-07 711712]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2013-04-06 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-04 14464]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO64A.SYS [2013-10-17 31136]
R1 Pdhd2.sys;Service for Prodigy HD2 EWDM; C:\Windows\system32\DRIVERS\Pdhd2.sys [2009-10-29 51296]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-11-04 59648]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2011-12-07 81952]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2013-05-28 106816]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2013-05-28 227648]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2013-12-16 138456]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2013-12-16 422616]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-10-01 25816]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-09-17 19272]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-09-04 38048]
R3 Pdhd2Wdm.sys;Service for Prodigy HD2 WDM; C:\Windows\system32\DRIVERS\Pdhd2Wdm.sys [2009-10-29 41568]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-06-05 936664]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-08-29 58536]
S2 MLPTDR_B;MLPTDR_B; \??\C:\Windows\syswow64\MLPTDR_B.SYS [2006-12-08 20064]
S3 ALSysIO;ALSysIO; \??\E:\Temp\ALSysIO64.sys []
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-02 628224]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-12-20 94720]
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-02 13938176]
S3 cmudaxp;ASUS Xonar D2 Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys []
S3 cpuz130;cpuz130; \??\E:\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 CrystalCpuInfo;CrystalCpuInfo; \??\E:\Temp\CpuInfo64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-06-16 110336]
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-11-13 129752]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-10-01 63704]
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-14 196384]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-06-16 206080]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2014-07-23 172344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-02 240128]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-02 344064]
R2 APC UPS Service;APC UPS Service; C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe [2007-07-19 689408]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [2013-05-14 936728]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-09-17 1148744]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-10-01 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-09-17 1795912]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-09-17 19439944]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 935368]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 411936]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-10-01 968504]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12 267440]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2013-10-15 520416]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-02-06 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-06 114688]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-02-08 569024]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-29 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
ak je to stale pomale vloz log FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100
ak je to OK, tak nemusis
ak je to OK, tak nemusis
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
Děkuji moc!!! Je to lepší. Provedl jsem dle odkazu scan a zde je LOG:
------------------------------------------------------------------
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-11-2014
Ran by Zbyšek (administrator) on ZBYŠEK-PC on 13-11-2014 12:46:54
Running from C:\Users\Zbyšek\Desktop
Loaded Profile: Zbyšek (Available profiles: Zbyšek)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(American Power Conversion Corporation) C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Windows\System32\Pdhd2Pan.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(American Power Conversion Corporation) C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\foobar2000\foobar2000.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2011-05-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Pdhd2Pan.exe] => C:\Windows\system32\Pdhd2Pan.exe [3499616 2009-10-29] ()
HKLM\...\Run: [NUSB3MON] => C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43608 2010-09-07] ()
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-05-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2011-03-04] (Hewlett-Packard Company)
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7762712 2014-08-11] (SUPERAntiSpyware)
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\MountPoints2: {08a35a84-c429-11e1-a3d2-806e6f6e6963} - G:\setup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APC UPS Status.lnk
ShortcutTarget: APC UPS Status.lnk -> C:\Program Files (x86)\APC\APC PowerChute Personal Edition\Display.exe (American Power Conversion Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - No File
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 195.178.72.150
FireFox:
========
FF ProfilePath: C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Classic Theme Restorer - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2014-05-19]
FF Extension: YouTube High Definition - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-07-10]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-08-04]
Chrome:
=======
CHR HomePage: Default ->
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-05]
CHR Extension: (Disk Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-05]
CHR Extension: (YouTube) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-05]
CHR Extension: (Vyhledávání Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-05]
CHR Extension: (LIVESCORE SOCCER) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gibfflggfgeemmkaifokfjanokokcjfg [2014-09-02]
CHR Extension: (AdBlock) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-29]
CHR Extension: (Auto HD For YouTube™) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak [2014-08-05]
CHR Extension: (Peněženka Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-05]
CHR Extension: (Gmail) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-05]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-02] (Advanced Micro Devices, Inc.) [File not signed]
R2 APC UPS Service; C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe [689408 2007-07-19] (American Power Conversion Corporation)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-14] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2013-10-15] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-11-04] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-04-06] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-04] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31136 2013-10-17] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-11-13] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)
S2 MLPTDR_B; C:\Windows\SysWOW64\MLPTDR_B.SYS [20064 2006-12-08] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R1 Pdhd2.sys; C:\Windows\System32\DRIVERS\Pdhd2.sys [51296 2009-10-29] ()
R3 Pdhd2Wdm.sys; C:\Windows\System32\DRIVERS\Pdhd2Wdm.sys [41568 2009-10-29] ()
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 ALSysIO; \??\E:\Temp\ALSysIO64.sys [X]
S3 cmudaxp; system32\drivers\cmudaxp.sys [X]
S3 cpuz130; \??\E:\Temp\cpuz130\cpuz_x64.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 CrystalCpuInfo; \??\E:\Temp\CpuInfo64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-13 12:46 - 2014-11-13 12:47 - 00017830 _____ () C:\Users\Zbyšek\Desktop\FRST.txt
2014-11-13 12:46 - 2014-11-13 12:46 - 00000000 ____D () C:\FRST
2014-11-13 12:45 - 2014-11-13 12:45 - 00112640 _____ (forum.viry.cz) C:\Users\Zbyšek\Desktop\Nepotvrzeno 895602.exe
2014-11-13 12:45 - 2014-11-13 12:45 - 00015327 _____ () C:\Users\Zbyšek\Desktop\LM.bat
2014-11-13 12:43 - 2014-11-13 12:43 - 02116096 _____ (Farbar) C:\Users\Zbyšek\Desktop\FRST64.exe
2014-11-13 08:58 - 2014-11-13 10:11 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-13 08:57 - 2014-11-13 08:57 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-11-13 08:57 - 2014-11-13 08:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-11-13 08:57 - 2014-11-13 08:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-13 08:57 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-13 08:57 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-13 08:57 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-13 08:45 - 2014-11-13 08:45 - 00000000 ____D () C:\rsit
2014-11-13 08:44 - 2014-11-13 08:44 - 01222144 _____ () C:\Users\Zbyšek\Desktop\RSITx64.exe
2014-11-12 08:36 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 08:36 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 08:36 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 08:36 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 08:36 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 08:36 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 08:36 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 08:36 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 08:36 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 08:36 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 08:36 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 08:36 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 08:36 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 08:36 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 08:36 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 08:36 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 08:36 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 08:36 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 08:36 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 08:36 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 08:36 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 08:36 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 08:36 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 08:36 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 08:36 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 08:36 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:36 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 08:36 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 08:36 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 08:36 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 08:36 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 08:36 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 08:36 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 08:36 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 08:36 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 08:36 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 08:36 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:36 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 08:36 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 08:36 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 08:36 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 08:36 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 08:36 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 08:36 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 08:36 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 08:36 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 08:36 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 08:36 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 08:36 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 08:36 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 08:36 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 08:36 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 08:36 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 08:36 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 08:36 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 08:36 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 08:36 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 08:36 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 08:36 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 08:36 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 08:36 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 08:36 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 08:36 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 08:36 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 08:36 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 08:36 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 08:36 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 08:36 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 08:36 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 08:36 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 08:36 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 08:36 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 08:36 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 08:36 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 08:36 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 08:36 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 08:36 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 08:36 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 08:36 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 08:36 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 08:36 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 08:36 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 08:36 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-12 08:36 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 08:36 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 08:36 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 08:36 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 08:36 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 08:36 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-10-20 16:03 - 2014-10-20 16:03 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-10-20 16:00 - 2014-10-20 16:08 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-10-20 15:59 - 2014-06-16 07:01 - 00206080 _____ (DEVGURU Co., LTD.(http://www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-10-20 15:59 - 2014-06-16 07:01 - 00110336 _____ (DEVGURU Co., LTD.(http://www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2014-10-16 07:53 - 2014-09-04 20:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-10-16 07:53 - 2014-09-04 20:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-10-16 07:22 - 2014-10-16 07:22 - 00464656 _____ () C:\Windows\Minidump\101614-8096-01.dmp
2014-10-16 07:16 - 2014-10-16 07:16 - 00487640 _____ () C:\Windows\Minidump\101614-20826-01.dmp
2014-10-16 07:09 - 2014-10-16 07:10 - 00487984 _____ () C:\Windows\Minidump\101614-4586-01.dmp
2014-10-16 07:06 - 2014-10-16 07:06 - 00470632 _____ () C:\Windows\Minidump\101614-20888-01.dmp
2014-10-16 07:05 - 2014-10-16 07:22 - 279971589 _____ () C:\Windows\MEMORY.DMP
2014-10-16 07:05 - 2014-10-16 07:05 - 00262224 _____ () C:\Windows\Minidump\101614-18096-01.dmp
2014-10-16 07:01 - 2014-09-17 03:13 - 02193560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-10-16 07:01 - 2014-09-17 03:13 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-10-16 07:01 - 2014-09-17 03:12 - 02799784 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-10-16 07:01 - 2014-09-17 03:12 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-10-16 07:00 - 2014-07-02 18:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-10-16 06:59 - 2014-09-04 20:14 - 00034976 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-10-16 06:56 - 2014-10-16 06:56 - 00000000 ____D () C:\NVIDIA
2014-10-15 07:55 - 2014-08-19 04:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-10-15 07:55 - 2014-08-19 04:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-10-15 07:55 - 2014-08-19 04:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-15 07:55 - 2014-08-19 04:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-10-15 07:55 - 2014-08-19 04:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-10-15 07:55 - 2014-08-19 04:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-10-15 07:55 - 2014-08-19 04:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 07:55 - 2014-08-19 04:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2014-10-15 07:55 - 2014-08-19 04:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2014-10-15 07:55 - 2014-08-19 04:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 07:55 - 2014-08-19 03:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2014-10-15 07:55 - 2014-08-19 03:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-10-15 07:55 - 2014-08-19 03:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-10-15 07:55 - 2014-07-07 03:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-10-15 07:55 - 2014-07-07 03:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-10-15 07:55 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-15 07:55 - 2014-07-07 03:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-10-15 07:55 - 2014-07-07 03:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-10-15 07:55 - 2014-07-07 03:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-10-15 07:55 - 2014-07-07 03:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-10-15 07:55 - 2014-07-07 03:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-10-15 07:55 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-10-15 07:55 - 2014-07-07 02:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-10-15 07:55 - 2014-07-07 02:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2014-10-15 07:55 - 2014-07-07 02:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2014-10-15 07:55 - 2014-07-07 02:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-10-15 07:55 - 2014-07-07 02:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-10-15 07:55 - 2014-07-07 02:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-10-15 07:55 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-10-15 07:55 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-10-15 07:55 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-10-15 07:55 - 2014-06-28 01:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-10-15 07:55 - 2014-06-28 01:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-10-15 07:55 - 2014-06-28 01:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-15 07:54 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-15 07:54 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-15 07:54 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-15 07:54 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-15 07:54 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-15 07:54 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-15 07:54 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-15 07:54 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-15 07:54 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-15 07:54 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-15 07:54 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-13 12:24 - 2013-02-06 13:20 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-13 12:19 - 2012-03-31 06:24 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-13 10:08 - 2011-04-28 09:15 - 00000000 ____D () C:\Users\Zbyšek\AppData\Roaming\foobar2000
2014-11-13 10:06 - 2009-07-14 16:18 - 06331498 _____ () C:\Windows\system32\perfh005.dat
2014-11-13 10:06 - 2009-07-14 16:18 - 02057838 _____ () C:\Windows\system32\perfc005.dat
2014-11-13 10:06 - 2009-07-14 06:13 - 00006268 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-13 10:06 - 2009-07-14 05:45 - 00024592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-13 10:06 - 2009-07-14 05:45 - 00024592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-13 10:02 - 2011-04-28 08:38 - 01182838 _____ () C:\Windows\WindowsUpdate.log
2014-11-13 10:00 - 2013-08-22 11:29 - 00000000 ____D () C:\Program Files\trend micro
2014-11-13 10:00 - 2013-01-21 08:32 - 00003026 _____ () C:\Windows\System32\Tasks\MSIAfterburner
2014-11-13 09:59 - 2014-09-01 08:04 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-11-13 09:59 - 2014-07-25 06:29 - 00011933 _____ () C:\Windows\setupact.log
2014-11-13 09:59 - 2014-06-23 12:04 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-13 09:59 - 2013-02-06 13:20 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-13 09:59 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-13 09:46 - 2014-08-22 07:17 - 00027392 _____ () C:\Windows\PFRO.log
2014-11-13 09:45 - 2014-06-12 10:35 - 00000000 ____D () C:\Users\Zbyšek\.mucommander
2014-11-13 09:35 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-13 07:43 - 2009-07-14 05:45 - 04909112 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-13 07:42 - 2014-05-06 13:31 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-12 16:03 - 2013-08-16 11:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 16:01 - 2011-05-02 13:18 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-12 13:29 - 2011-05-03 08:32 - 00000072 _____ () C:\Users\Public\LMDebug.log
2014-11-12 11:28 - 2012-06-28 11:05 - 00000000 ____D () C:\Users\Zbyšek\.gimp-2.8
2014-11-12 10:27 - 2011-04-28 10:48 - 00000000 ____D () C:\Users\Zbyšek\AppData\Roaming\vlc
2014-11-12 09:19 - 2012-03-31 06:24 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-12 09:19 - 2012-03-31 06:24 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-12 09:19 - 2011-05-19 14:20 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-31 07:13 - 2014-03-07 09:06 - 00000000 ____D () C:\Users\Zbyšek\Documents\samsung
2014-10-29 13:26 - 2014-08-05 07:51 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-29 08:19 - 2013-02-06 13:20 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-29 08:19 - 2013-02-06 13:20 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-28 06:34 - 2011-04-28 08:53 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-27 08:33 - 2013-10-21 11:39 - 00000022 _____ () C:\Windows\GPU-Z.INI
2014-10-27 08:33 - 2013-04-30 07:59 - 00000000 ____D () C:\Temp
2014-10-23 08:06 - 2011-04-28 09:01 - 00000600 _____ () C:\Users\Zbyšek\AppData\Roaming\winscp.rnd
2014-10-20 16:05 - 2013-10-22 08:02 - 00000000 ____D () C:\ProgramData\Oracle
2014-10-20 16:03 - 2013-06-20 07:19 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-10-20 16:03 - 2011-10-20 14:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-10-20 16:03 - 2011-10-20 14:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-10-20 16:03 - 2011-07-08 07:40 - 00000000 ____D () C:\Program Files (x86)\Java
2014-10-20 15:59 - 2014-05-27 14:18 - 00001969 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk
2014-10-16 07:54 - 2014-10-10 10:08 - 00000000 ____D () C:\Users\Zbyšek\Documents\AquaMark3
2014-10-16 07:53 - 2011-05-13 07:08 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-16 07:52 - 2011-05-13 07:10 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-10-16 07:22 - 2011-05-02 14:07 - 00000000 ____D () C:\Windows\Minidump
2014-10-16 07:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-10-16 07:01 - 2014-10-10 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-10-16 07:01 - 2011-05-13 07:10 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-10-16 06:59 - 2012-09-11 14:02 - 00000050 __RSH () C:\Users\Zby
2014-10-16 06:49 - 2009-07-14 05:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-10-16 06:47 - 2009-07-14 06:08 - 00032556 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-10-16 06:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-10-16 06:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-06 08:07
==================== End Of Log ============================
------------------------------------------------------------------
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-11-2014
Ran by Zbyšek (administrator) on ZBYŠEK-PC on 13-11-2014 12:46:54
Running from C:\Users\Zbyšek\Desktop
Loaded Profile: Zbyšek (Available profiles: Zbyšek)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(American Power Conversion Corporation) C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Windows\System32\Pdhd2Pan.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(American Power Conversion Corporation) C:\Program Files (x86)\APC\APC PowerChute Personal Edition\apcsystray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\foobar2000\foobar2000.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2011-05-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Pdhd2Pan.exe] => C:\Windows\system32\Pdhd2Pan.exe [3499616 2009-10-29] ()
HKLM\...\Run: [NUSB3MON] => C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43608 2010-09-07] ()
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-05-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-02] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2011-03-04] (Hewlett-Packard Company)
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7762712 2014-08-11] (SUPERAntiSpyware)
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\MountPoints2: {08a35a84-c429-11e1-a3d2-806e6f6e6963} - G:\setup.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APC UPS Status.lnk
ShortcutTarget: APC UPS Status.lnk -> C:\Program Files (x86)\APC\APC PowerChute Personal Edition\Display.exe (American Power Conversion Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - No File
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 195.178.72.150
FireFox:
========
FF ProfilePath: C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mapy-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: Classic Theme Restorer - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2014-05-19]
FF Extension: YouTube High Definition - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-07-10]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-08-04]
Chrome:
=======
CHR HomePage: Default ->
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-05]
CHR Extension: (Disk Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-05]
CHR Extension: (YouTube) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-05]
CHR Extension: (Vyhledávání Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-05]
CHR Extension: (LIVESCORE SOCCER) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gibfflggfgeemmkaifokfjanokokcjfg [2014-09-02]
CHR Extension: (AdBlock) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-09-29]
CHR Extension: (Auto HD For YouTube™) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak [2014-08-05]
CHR Extension: (Peněženka Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-05]
CHR Extension: (Gmail) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-05]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-02] (Advanced Micro Devices, Inc.) [File not signed]
R2 APC UPS Service; C:\Program Files (x86)\APC\APC PowerChute Personal Edition\mainserv.exe [689408 2007-07-19] (American Power Conversion Corporation)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-14] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2013-10-15] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-11-04] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-04-06] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-04] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31136 2013-10-17] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-11-13] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)
S2 MLPTDR_B; C:\Windows\SysWOW64\MLPTDR_B.SYS [20064 2006-12-08] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R1 Pdhd2.sys; C:\Windows\System32\DRIVERS\Pdhd2.sys [51296 2009-10-29] ()
R3 Pdhd2Wdm.sys; C:\Windows\System32\DRIVERS\Pdhd2Wdm.sys [41568 2009-10-29] ()
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 ALSysIO; \??\E:\Temp\ALSysIO64.sys [X]
S3 cmudaxp; system32\drivers\cmudaxp.sys [X]
S3 cpuz130; \??\E:\Temp\cpuz130\cpuz_x64.sys [X]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 CrystalCpuInfo; \??\E:\Temp\CpuInfo64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-13 12:46 - 2014-11-13 12:47 - 00017830 _____ () C:\Users\Zbyšek\Desktop\FRST.txt
2014-11-13 12:46 - 2014-11-13 12:46 - 00000000 ____D () C:\FRST
2014-11-13 12:45 - 2014-11-13 12:45 - 00112640 _____ (forum.viry.cz) C:\Users\Zbyšek\Desktop\Nepotvrzeno 895602.exe
2014-11-13 12:45 - 2014-11-13 12:45 - 00015327 _____ () C:\Users\Zbyšek\Desktop\LM.bat
2014-11-13 12:43 - 2014-11-13 12:43 - 02116096 _____ (Farbar) C:\Users\Zbyšek\Desktop\FRST64.exe
2014-11-13 08:58 - 2014-11-13 10:11 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-13 08:57 - 2014-11-13 08:57 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-11-13 08:57 - 2014-11-13 08:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-11-13 08:57 - 2014-11-13 08:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-13 08:57 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-13 08:57 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-11-13 08:57 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-11-13 08:45 - 2014-11-13 08:45 - 00000000 ____D () C:\rsit
2014-11-13 08:44 - 2014-11-13 08:44 - 01222144 _____ () C:\Users\Zbyšek\Desktop\RSITx64.exe
2014-11-12 08:36 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 08:36 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 08:36 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 08:36 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 08:36 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 08:36 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 08:36 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 08:36 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 08:36 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 08:36 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 08:36 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 08:36 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 08:36 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 08:36 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 08:36 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 08:36 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 08:36 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 08:36 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 08:36 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 08:36 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 08:36 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 08:36 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 08:36 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 08:36 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 08:36 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 08:36 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 08:36 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 08:36 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 08:36 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 08:36 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 08:36 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 08:36 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 08:36 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 08:36 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 08:36 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 08:36 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 08:36 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 08:36 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 08:36 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 08:36 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 08:36 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 08:36 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 08:36 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 08:36 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 08:36 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 08:36 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 08:36 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 08:36 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 08:36 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 08:36 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 08:36 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 08:36 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 08:36 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 08:36 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 08:36 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 08:36 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 08:36 - 2014-11-05 18:56 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-11-12 08:36 - 2014-11-05 18:56 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-11-12 08:36 - 2014-11-05 18:52 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-11-12 08:36 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 08:36 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 08:36 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 08:36 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 08:36 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 08:36 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 08:36 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 08:36 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 08:36 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 08:36 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 08:36 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 08:36 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 08:36 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 08:36 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 08:36 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 08:36 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-12 08:36 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 08:36 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 08:36 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 08:36 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 08:36 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 08:36 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 08:36 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 08:36 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 08:36 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 08:36 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-12 08:36 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 08:36 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 08:36 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 08:36 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 08:36 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 08:36 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-10-20 16:03 - 2014-10-20 16:03 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-10-20 16:00 - 2014-10-20 16:08 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-10-20 15:59 - 2014-06-16 07:01 - 00206080 _____ (DEVGURU Co., LTD.(http://www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-10-20 15:59 - 2014-06-16 07:01 - 00110336 _____ (DEVGURU Co., LTD.(http://www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2014-10-16 07:53 - 2014-09-04 20:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-10-16 07:53 - 2014-09-04 20:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-10-16 07:22 - 2014-10-16 07:22 - 00464656 _____ () C:\Windows\Minidump\101614-8096-01.dmp
2014-10-16 07:16 - 2014-10-16 07:16 - 00487640 _____ () C:\Windows\Minidump\101614-20826-01.dmp
2014-10-16 07:09 - 2014-10-16 07:10 - 00487984 _____ () C:\Windows\Minidump\101614-4586-01.dmp
2014-10-16 07:06 - 2014-10-16 07:06 - 00470632 _____ () C:\Windows\Minidump\101614-20888-01.dmp
2014-10-16 07:05 - 2014-10-16 07:22 - 279971589 _____ () C:\Windows\MEMORY.DMP
2014-10-16 07:05 - 2014-10-16 07:05 - 00262224 _____ () C:\Windows\Minidump\101614-18096-01.dmp
2014-10-16 07:01 - 2014-09-17 03:13 - 02193560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-10-16 07:01 - 2014-09-17 03:13 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-10-16 07:01 - 2014-09-17 03:12 - 02799784 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-10-16 07:01 - 2014-09-17 03:12 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-10-16 07:00 - 2014-07-02 18:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-10-16 06:59 - 2014-09-04 20:14 - 00034976 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-10-16 06:56 - 2014-10-16 06:56 - 00000000 ____D () C:\NVIDIA
2014-10-15 07:55 - 2014-08-19 04:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-10-15 07:55 - 2014-08-19 04:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-10-15 07:55 - 2014-08-19 04:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-15 07:55 - 2014-08-19 04:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-10-15 07:55 - 2014-08-19 04:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-10-15 07:55 - 2014-08-19 04:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-10-15 07:55 - 2014-08-19 04:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 07:55 - 2014-08-19 04:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2014-10-15 07:55 - 2014-08-19 04:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2014-10-15 07:55 - 2014-08-19 04:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 07:55 - 2014-08-19 03:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2014-10-15 07:55 - 2014-08-19 03:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-10-15 07:55 - 2014-08-19 03:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-10-15 07:55 - 2014-07-07 03:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-10-15 07:55 - 2014-07-07 03:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-10-15 07:55 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-15 07:55 - 2014-07-07 03:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-10-15 07:55 - 2014-07-07 03:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-10-15 07:55 - 2014-07-07 03:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-10-15 07:55 - 2014-07-07 03:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-10-15 07:55 - 2014-07-07 03:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-10-15 07:55 - 2014-07-07 03:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-10-15 07:55 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-10-15 07:55 - 2014-07-07 02:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-10-15 07:55 - 2014-07-07 02:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2014-10-15 07:55 - 2014-07-07 02:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2014-10-15 07:55 - 2014-07-07 02:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2014-10-15 07:55 - 2014-07-07 02:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-10-15 07:55 - 2014-07-07 02:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-10-15 07:55 - 2014-07-07 02:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-10-15 07:55 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-10-15 07:55 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-10-15 07:55 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-10-15 07:55 - 2014-06-28 01:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-10-15 07:55 - 2014-06-28 01:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-10-15 07:55 - 2014-06-28 01:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-15 07:55 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-15 07:54 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-15 07:54 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-15 07:54 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-15 07:54 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-15 07:54 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-15 07:54 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-15 07:54 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-15 07:54 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-15 07:54 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-15 07:54 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-15 07:54 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-13 12:24 - 2013-02-06 13:20 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-13 12:19 - 2012-03-31 06:24 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-13 10:08 - 2011-04-28 09:15 - 00000000 ____D () C:\Users\Zbyšek\AppData\Roaming\foobar2000
2014-11-13 10:06 - 2009-07-14 16:18 - 06331498 _____ () C:\Windows\system32\perfh005.dat
2014-11-13 10:06 - 2009-07-14 16:18 - 02057838 _____ () C:\Windows\system32\perfc005.dat
2014-11-13 10:06 - 2009-07-14 06:13 - 00006268 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-13 10:06 - 2009-07-14 05:45 - 00024592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-13 10:06 - 2009-07-14 05:45 - 00024592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-13 10:02 - 2011-04-28 08:38 - 01182838 _____ () C:\Windows\WindowsUpdate.log
2014-11-13 10:00 - 2013-08-22 11:29 - 00000000 ____D () C:\Program Files\trend micro
2014-11-13 10:00 - 2013-01-21 08:32 - 00003026 _____ () C:\Windows\System32\Tasks\MSIAfterburner
2014-11-13 09:59 - 2014-09-01 08:04 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-11-13 09:59 - 2014-07-25 06:29 - 00011933 _____ () C:\Windows\setupact.log
2014-11-13 09:59 - 2014-06-23 12:04 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-13 09:59 - 2013-02-06 13:20 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-13 09:59 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-13 09:46 - 2014-08-22 07:17 - 00027392 _____ () C:\Windows\PFRO.log
2014-11-13 09:45 - 2014-06-12 10:35 - 00000000 ____D () C:\Users\Zbyšek\.mucommander
2014-11-13 09:35 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-13 07:43 - 2009-07-14 05:45 - 04909112 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-13 07:42 - 2014-05-06 13:31 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-11-12 16:03 - 2013-08-16 11:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-12 16:01 - 2011-05-02 13:18 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-11-12 13:29 - 2011-05-03 08:32 - 00000072 _____ () C:\Users\Public\LMDebug.log
2014-11-12 11:28 - 2012-06-28 11:05 - 00000000 ____D () C:\Users\Zbyšek\.gimp-2.8
2014-11-12 10:27 - 2011-04-28 10:48 - 00000000 ____D () C:\Users\Zbyšek\AppData\Roaming\vlc
2014-11-12 09:19 - 2012-03-31 06:24 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-12 09:19 - 2012-03-31 06:24 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-12 09:19 - 2011-05-19 14:20 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-31 07:13 - 2014-03-07 09:06 - 00000000 ____D () C:\Users\Zbyšek\Documents\samsung
2014-10-29 13:26 - 2014-08-05 07:51 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-29 08:19 - 2013-02-06 13:20 - 00003948 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-29 08:19 - 2013-02-06 13:20 - 00003696 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-28 06:34 - 2011-04-28 08:53 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-27 08:33 - 2013-10-21 11:39 - 00000022 _____ () C:\Windows\GPU-Z.INI
2014-10-27 08:33 - 2013-04-30 07:59 - 00000000 ____D () C:\Temp
2014-10-23 08:06 - 2011-04-28 09:01 - 00000600 _____ () C:\Users\Zbyšek\AppData\Roaming\winscp.rnd
2014-10-20 16:05 - 2013-10-22 08:02 - 00000000 ____D () C:\ProgramData\Oracle
2014-10-20 16:03 - 2013-06-20 07:19 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-10-20 16:03 - 2011-10-20 14:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-10-20 16:03 - 2011-10-20 14:09 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-10-20 16:03 - 2011-07-08 07:40 - 00000000 ____D () C:\Program Files (x86)\Java
2014-10-20 15:59 - 2014-05-27 14:18 - 00001969 _____ () C:\Users\Public\Desktop\Samsung Kies 3.lnk
2014-10-16 07:54 - 2014-10-10 10:08 - 00000000 ____D () C:\Users\Zbyšek\Documents\AquaMark3
2014-10-16 07:53 - 2011-05-13 07:08 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-16 07:52 - 2011-05-13 07:10 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-10-16 07:22 - 2011-05-02 14:07 - 00000000 ____D () C:\Windows\Minidump
2014-10-16 07:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-10-16 07:01 - 2014-10-10 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-10-16 07:01 - 2011-05-13 07:10 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-10-16 06:59 - 2012-09-11 14:02 - 00000050 __RSH () C:\Users\Zby
2014-10-16 06:49 - 2009-07-14 05:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-10-16 06:47 - 2009-07-14 06:08 - 00032556 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-10-16 06:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-10-16 06:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-06 08:07
==================== End Of Log ============================
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
Hrome.
Teď jsem projel PC programem SUPERAntiSpyware a ejhle:
----------------------------------------------------------------------------
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 11/13/2014 at 01:00 PM
Application Version : 6.0.1130
Database Version : 11552
Scan type : Complete Scan
Total Scan Time : 00:11:46
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
Memory items scanned : 642
Memory threats detected : 0
Registry items scanned : 54064
Registry threats detected : 0
File items scanned : 43438
File threats detected : 10
Adware.Tracking Cookie
.yadro.ru [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pornhub.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pornhub.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
http://www.pornhub.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.histats.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.toplist.cz [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
http://www.googleadservices.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
http://www.googleadservices.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
============
End of Log
============
Teď jsem projel PC programem SUPERAntiSpyware a ejhle:
----------------------------------------------------------------------------
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 11/13/2014 at 01:00 PM
Application Version : 6.0.1130
Database Version : 11552
Scan type : Complete Scan
Total Scan Time : 00:11:46
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
Memory items scanned : 642
Memory threats detected : 0
Registry items scanned : 54064
Registry threats detected : 0
File items scanned : 43438
File threats detected : 10
Adware.Tracking Cookie
.yadro.ru [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pornhub.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pornhub.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
http://www.pornhub.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.histats.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.toplist.cz [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
http://www.googleadservices.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
http://www.googleadservices.com [ C:\USERS\ZBYšEK\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
============
End of Log
============
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
1. odinstaluj MBAM
2. vycisti PC s ADWCleanerom a hotovo
2. vycisti PC s ADWCleanerom a hotovo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
MBAM odinstalován.
AdwCleaner v4.101 nainstalován a spuštěn - vyčištěno a po restartu log:
# AdwCleaner v4.101 - Report created 13/11/2014 at 13:30:58
# Updated 09/11/2014 by Xplode
# Database : 2014-11-12.2 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Zbyšek - ZBYŠEK-PC
# Running from : C:\Users\Zbyšek\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\Zbyšek\AppData\Roaming\Solvusoft
File Deleted : C:\Windows\System32\roboot64.exe
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKLM\SOFTWARE\Myfree Codec
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17420
-\\ Mozilla Firefox v
-\\ Google Chrome v38.0.2125.111
*************************
AdwCleaner[R2].txt - [1868 octets] - [13/11/2014 13:29:40]
AdwCleaner[S2].txt - [1765 octets] - [13/11/2014 13:30:58]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1825 octets] ##########
AdwCleaner v4.101 nainstalován a spuštěn - vyčištěno a po restartu log:
# AdwCleaner v4.101 - Report created 13/11/2014 at 13:30:58
# Updated 09/11/2014 by Xplode
# Database : 2014-11-12.2 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Zbyšek - ZBYŠEK-PC
# Running from : C:\Users\Zbyšek\Desktop\adwcleaner_4.101.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\Zbyšek\AppData\Roaming\Solvusoft
File Deleted : C:\Windows\System32\roboot64.exe
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Key Deleted : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKLM\SOFTWARE\Myfree Codec
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17420
-\\ Mozilla Firefox v
-\\ Google Chrome v38.0.2125.111
*************************
AdwCleaner[R2].txt - [1868 octets] - [13/11/2014 13:29:40]
AdwCleaner[S2].txt - [1765 octets] - [13/11/2014 13:30:58]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1825 octets] ##########
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
fajn a mame cisto
z nalezu SUPERAntiSpyware si nic nerob - su to ptakoviny ,,,
z nalezu SUPERAntiSpyware si nic nerob - su to ptakoviny ,,,
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
Super!
Chtěl bych Vám moc poděkovat za pomoc. Zejména za rychlé a účinné rady.
!!! DĚKUJI !!!
Chtěl bych Vám moc poděkovat za pomoc. Zejména za rychlé a účinné rady.
!!! DĚKUJI !!!
Re: Nějaká havět - chrome startuje pomalu - cca 20-40s
rado sa stalo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?