VIRY.CZ

info.txt logfile of random's system information tool 1.10 2015-07-26 17:08:20

======MBR======

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

======Uninstall list======

3DMark-->"C:\ProgramData\Package Cache\{7330098c-3669-4f39-9e82-4221d489db39}\3dmark-setup.exe" /uninstall
3DMark-->MsiExec.exe /X{4EC1B8B7-E3B4-4A9F-8005-7AF92DA4DFCF}
Adobe AIR-->C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{34927EBC-98D4-4D53-98BE-510DF5999F50}
Adobe Community Help-->msiexec /qb /x {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Community Help-->MsiExec.exe /I{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Flash Player 18 NPAPI-->MsiExec.exe /X{448D7DEC-36F1-4091-B419-C5487BDEB867}
Adobe Media Player-->msiexec /qb /x {DE3A9DC5-9A5D-6485-9662-347162C7E4CA}
Adobe Media Player-->MsiExec.exe /I{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}
Adobe Photoshop CS6-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}"
Alternative Look for Yennefer-->"D:\GOG\The Witcher 3 Wild Hunt\unins004.exe"
Battlelog Web Plugins-->C:\Program Files (x86)\Battlelog Web Plugins\uninstall.exe
Beard and Hairstyle Set-->"D:\GOG\The Witcher 3 Wild Hunt\unins002.exe"
Bloody5-->"C:\ProgramData\Microsoft\Windows\Templates\Bloody5\Setup.exe" uninstall
Camtasia Studio 8-->MsiExec.exe /I{A0FC961E-DC6D-4144-9277-ECDBB99D0AB9}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CDBurnerXP-->"C:\Program Files (x86)\CDBurnerXP\unins000.exe"
Company of Heroes (New Steam Version)-->"D:\Steam\steam.exe" steam://uninstall/228200
Counter-Strike: Global Offensive-->"D:\Steam\steam.exe" steam://uninstall/730
DAEMON Tools Lite-->C:\Program Files (x86)\DAEMON Tools Lite\uninst.exe
DayZ-->"D:\Steam\steam.exe" steam://uninstall/221100
Driver San Francisco-->"D:\Program Files (x86)\Ubisoft\Uninstall\Uninstall.exe"
Dungeons of Dredmor-->"D:\Steam\steam.exe" steam://uninstall/98800
EA SPORTS™ FIFA 15-->"C:\Program Files (x86)\Common Files\EAInstaller\FIFA 15\Cleanup.exe" uninstall_game -autologging
Entity Framework Designer for Visual Studio 2012 - enu-->MsiExec.exe /X{32136776-FE3F-453D-80DA-CDD993BDB2A3}
Epic Games Launcher-->MsiExec.exe /X{CB510119-C58D-4443-BD87-59B2D951F019}
ESET Online Scanner v3-->C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe
Euro Truck Simulator 2-->"D:\Steam\steam.exe" steam://uninstall/227300
Far Cry 4-->"D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" uplay://uninstall/420
FastShare.cz verze 2.3.1-->"C:\Program Files (x86)\FastShare\unins000.exe"
FileZilla Client 3.10.1.1-->C:\Program Files (x86)\FileZilla FTP Client\uninstall.exe
Foxit Reader-->"C:\Program Files (x86)\Foxit Software\Foxit Reader\unins000.exe"
Fraps (remove only)-->"C:\Fraps\uninstall.exe"
Futuremark SystemInfo-->MsiExec.exe /X{03856D3F-DDDC-4C9A-9202-36529D21D94C}
GOG Galaxy-->"D:\Program Files (x86)\GalaxyClient\unins000.exe"
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Grand Theft Auto V-->"C:\Program Files (x86)\InstallShield Installation Information\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}\setup.exe" -runfromtemp -l0x0409 -removeonly
GTA San Andreas-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}\setup.exe" -l0x9 -removeonly
Heroes & Generals-->"D:\Steam\steam.exe" steam://uninstall/227940
Insurgency-->"D:\Steam\steam.exe" steam://uninstall/222880
Intel(R) Chipset Device Software-->MsiExec.exe /I{98841A35-1CBE-4EA3-BFF5-F3E3AD894666}
Intel(R) Management Engine Components-->"C:\ProgramData\Intel\Package Cache\{1CEAC85D-2590-4760-800F-8DE5E91F3700}\Setup.exe" -uninstall
Intel(R) Management Engine Components-->MsiExec.exe /I{0D01BDA8-C995-40AD-95F8-26B7EA4DCF9F}
Intel(R) Management Engine Components-->MsiExec.exe /I{98900FE1-9C17-4553-B0D1-132BF9126412}
Intel(R) ME UninstallLegacy-->MsiExec.exe /I{E8B134CC-098E-4623-BD85-0A432FE5DDFB}
Intel(R) Rapid Storage Technology-->"C:\ProgramData\Intel\Package Cache\{409CB30E-E457-4008-9B1A-ED1B9EA21140}\Setup.exe" -uninstall
Intel(R) Rapid Storage Technology-->MsiExec.exe /I{EAF826C0-245E-4D02-9D51-BA4C98717EAE}
Intel® Chipset Device Software-->"C:\ProgramData\Package Cache\{d370215a-d003-43ae-a3b6-1028af64d5a1}\SetupChipset.exe" /uninstall
Intel® Trusted Connect Service Client-->MsiExec.exe /I{3DE97849-544D-4D68-9255-11DF6F9F10D8}
Ionball 2 : Ionstorm-->"D:\Steam\steam.exe" steam://uninstall/287120
Java 8 Update 51-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218051F0}
K-Lite Mega Codec Pack 10.7.5-->"C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe"
LogMeIn Hamachi-->C:\Windows\SysWOW64\\msiexec.exe /i {B8E7EF80-9719-4EEB-944D-E68D1F3DFA7B} REMOVE=ALL
LogMeIn Hamachi-->MsiExec.exe /I{B8E7EF80-9719-4EEB-944D-E68D1F3DFA7B}
Malwarebytes Anti-Malware verze 2.1.8.1057-->"C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"
METAL GEAR SOLID V: GROUND ZEROES-->"D:\Steam\steam.exe" steam://uninstall/311340
Microsoft .NET Framework 4 Multi-Targeting Pack-->MsiExec.exe /I{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}
Microsoft .NET Framework 4.5 Multi-Targeting Pack-->MsiExec.exe /X{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}
Microsoft .NET Framework 4.5 SDK-->MsiExec.exe /X{1948E039-EC79-4591-951D-9867A8C14C90}
Microsoft Help Viewer 2.0-->msiexec.exe /X{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}
Microsoft Help Viewer 2.0-->MsiExec.exe /X{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}
Microsoft NuGet - Visual Studio Express 2012 for Windows Desktop-->MsiExec.exe /I{49402ED1-A795-4435-A745-1B781BE621A6}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2012 Command Line Utilities -->MsiExec.exe /I{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}
Microsoft SQL Server 2012 Data-Tier App Framework -->MsiExec.exe /I{36E619BC-A234-4EC3-849B-779A7C865A45}
Microsoft SQL Server 2012 Data-Tier App Framework -->MsiExec.exe /I{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}
Microsoft SQL Server 2012 Express LocalDB -->MsiExec.exe /I{13D558FE-A863-402C-B115-160007277033}
Microsoft SQL Server 2012 Management Objects (x64)-->MsiExec.exe /I{FA0A244E-F3C2-4589-B42A-3D522DE79A42}
Microsoft SQL Server 2012 Management Objects -->MsiExec.exe /I{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}
Microsoft SQL Server 2012 Native Client -->MsiExec.exe /I{49D665A2-4C2A-476E-9AB8-FCC425F526FC}
Microsoft SQL Server 2012 Transact-SQL Compiler Service -->MsiExec.exe /I{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}
Microsoft SQL Server 2012 Transact-SQL ScriptDom -->MsiExec.exe /I{0E8670B8-3965-4930-ADA6-570348B67153}
Microsoft SQL Server 2012 T-SQL Language Service -->MsiExec.exe /I{6D6D43E5-218C-4B05-92D3-2240810F4760}
Microsoft SQL Server Compact 4.0 SP1 x64 ENU-->MsiExec.exe /X{78909610-D229-459C-A936-25D92283D3FD}
Microsoft SQL Server Data Tools - enu (11.1.20828.01)-->MsiExec.exe /X{4F2B8233-35EE-4197-8C3B-EACCBF712029}
Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20828.01)-->MsiExec.exe /X{FAE0523E-08A4-4717-8E8E-6EC6F32CBE88}
Microsoft System CLR Types for SQL Server 2012 (x64)-->MsiExec.exe /I{F1949145-EB64-4DE7-9D81-E6D27937146C}
Microsoft System CLR Types for SQL Server 2012-->MsiExec.exe /I{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 32bit Compilers - ENU Resources-->MsiExec.exe /X{0F3C9093-6C13-484D-8385-93AA21BEC025}
Microsoft Visual C++ 2012 Core Libraries-->MsiExec.exe /X{B362A397-B38A-3A23-A190-611F9C7EB4F9}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030-->"C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030-->"C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030-->MsiExec.exe /X{37B8F9C7-03FB-3253-8781-2517C99D7C00}
Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727-->MsiExec.exe /X{2B997E80-3BEC-3222-9114-98DBE1182B2E}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030-->MsiExec.exe /X{B175520C-86A2-35A7-8619-86DC379688B9}
Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727-->MsiExec.exe /X{1C163D33-33B3-33EB-A617-0D4D852BE8E1}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
Microsoft Visual C++ 2012 x86-x64 Compilers-->MsiExec.exe /X{A1785BD4-3486-4E7E-8074-E3FC61B8F315}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005-->"C:\ProgramData\Package Cache\{7f51bdb9-ee21-49ee-94d6-90afc321780e}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501-->"C:\ProgramData\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005-->"C:\ProgramData\Package Cache\{ce085a78-074e-4823-8dc1-8a721b94b76d}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501-->"C:\ProgramData\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005-->MsiExec.exe /X{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}
Microsoft Visual Studio 2012 Express Prerequisites x64 - ENU-->MsiExec.exe /I{30B7A7A6-D519-3332-BEB3-D105EFC7389A}
Microsoft Visual Studio 2012 Preparation-->MsiExec.exe /I{09412B73-6159-40D6-B0B9-C11B30A7531E}
Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies-->MsiExec.exe /I{820C677A-41B2-48C3-8136-FEE35A052E73}
Microsoft Visual Studio 2012 Shell (Minimum) Resources-->MsiExec.exe /I{38FC6E9A-F719-431A-A83D-4C86D5FD6555}
Microsoft Visual Studio 2012 Shell (Minimum)-->MsiExec.exe /I{800F484E-9D69-492D-B656-7BAA32586142}
Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU-->MsiExec.exe /I{E818AE7C-244B-4A50-9C86-C0E4A8B69159}
Microsoft Visual Studio Express 2012 for Windows Desktop - ENU-->"C:\ProgramData\Package Cache\{e0efdce9-a486-4676-8aa5-65bb08cbf34c}\wdexpress_full.exe" /uninstall
Microsoft Visual Studio Express 2012 for Windows Desktop - ENU-->MsiExec.exe /X{222C5507-AC43-388F-808E-2266EC57E043}
Microsoft Visual Studio Express 2012 for Windows Desktop-->MsiExec.exe /X{1BE2AFE6-209E-3862-AE45-DA9D3D21BD65}
Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU-->MsiExec.exe /I{68A48EF1-DF03-394F-AF40-1E4FE42BB8DD}
Microsoft Visual Studio Team Foundation Server 2012 Object Model-->MsiExec.exe /I{6F07A6C2-9068-3673-A120-DC10012468C6}
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU-->MsiExec.exe /I{1B9BBB23-65CB-3AEE-BFC6-633E7CA299FD}
Microsoft Visual Studio Team Foundation Server 2012 Team Explorer-->MsiExec.exe /I{6DAB46E3-D017-3E2B-85D8-F57A230384C0}
Microsoft_VC80_ATL_x86_x64-->MsiExec.exe /I{925D058B-564A-443A-B4B2-7E90C6432E55}
Microsoft_VC80_CRT_x86_x64-->MsiExec.exe /I{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}
Microsoft_VC80_CRT_x86-->MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC80_MFC_x86_x64-->MsiExec.exe /I{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}
Microsoft_VC80_MFC_x86-->MsiExec.exe /I{D1A19B02-817E-4296-A45B-07853FD74D57}
Microsoft_VC80_MFCLOC_x86_x64-->MsiExec.exe /I{1E9FC118-651D-4934-97BE-E53CAE5C7D45}
Microsoft_VC80_MFCLOC_x86-->MsiExec.exe /I{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
Microsoft_VC90_ATL_x86_x64-->MsiExec.exe /I{8557397C-A42D-486F-97B3-A2CBC2372593}
Microsoft_VC90_ATL_x86-->MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Microsoft_VC90_CRT_x86_x64-->MsiExec.exe /I{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}
Microsoft_VC90_CRT_x86-->MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Microsoft_VC90_MFC_x86_x64-->MsiExec.exe /I{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}
Microsoft_VC90_MFC_x86-->MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
Mount & Blade: Warband-->"D:\Steam\steam.exe" steam://uninstall/48700
Mozilla Firefox 39.0 (x86 en-US)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
MSI Afterburner 4.0.0-->"C:\Program Files (x86)\MSI Afterburner\uninstall.exe"
New Quest - Contract Missing Miners-->"D:\GOG\The Witcher 3 Wild Hunt\unins003.exe"
Notepad++-->C:\Program Files (x86)\Notepad++\uninstall.exe
NVIDIA GeForce Experience 2.4.5.57-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Ovladač 3D Vision 353.30-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA Ovladač HD audia 1.3.34.3-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA Ovladač řídící jednotky 3D Vision 352.65-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA Ovladače grafiky 353.30-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA Stereoscopic 3D Driver-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
NVIDIA Systémový software PhysX 9.15.0428-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
NVIDIA Virtuální audio Miracast 353.30-->"C:\Windows\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Miracast.VirtualAudio
Open Broadcaster Software-->C:\Program Files (x86)\OBS\uninstall.exe
Origin-->D:\Origin\OriginUninstall.exe
PDF Settings CS6-->MsiExec.exe /I{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
Prerequisites for SSDT -->MsiExec.exe /I{9169C939-ED01-446A-BD0C-29873BAF4E48}
RivaTuner Statistics Server 6.2.0-->"C:\Program Files (x86)\RivaTuner Statistics Server\uninstall.exe"
Rocket League-->"D:\Steam\steam.exe" steam://uninstall/252950
Rockstar Games Social Club-->C:\Program Files\Rockstar Games\Social Club\uninstallRGSCRedistributable.exe
Rust-->"D:\Steam\steam.exe" steam://uninstall/252490
Skype™ 7.4-->MsiExec.exe /X{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
SopCast 3.9.6-->C:\Program Files (x86)\SopCast\uninst.exe
SpeedFan (remove only)-->"C:\Program Files (x86)\SpeedFan\uninstall.exe"
Steam-->D:\Steam\uninstall.exe
Team Fortress 2-->"D:\Steam\steam.exe" steam://uninstall/440
Temerian Armor Set-->"D:\GOG\The Witcher 3 Wild Hunt\unins001.exe"
The Witcher 3 - Wild Hunt-->"D:\GOG\The Witcher 3 Wild Hunt\unins000.exe"
TightVNC-->MsiExec.exe /I{D2372F87-7DA2-47F7-A102-AF2181B8EAA2}
Total War: SHOGUN 2-->"D:\Steam\steam.exe" steam://uninstall/34330
Unigine Valley Benchmark version 1.0-->"C:\Program Files (x86)\Unigine\Valley Benchmark 1.0\unins000.exe"
Update for (KB2504637)-->C:\Windows\SysWOW64\msiexec.exe /package {CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE} /uninstall {815F0BC1-7E54-300C-9ACA-C9460FDF6F78} /qb+ REBOOTPROMPT=""
Uplay-->D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe
VLC media player-->d:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Windows Software Development Kit DirectX x64 Remote-->MsiExec.exe /I{5FB4C443-6BD6-1514-2717-3827D65AE6FB}
Windows Software Development Kit DirectX x86 Remote-->MsiExec.exe /I{23176E97-26CB-C72A-19EB-BFB21AC1D15A}
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote-->MsiExec.exe /I{27EF252D-800C-ED42-9904-459FE0046225}
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote-->MsiExec.exe /I{42F61556-29ED-8122-F39E-6F04EA5FF279}
Windows Software Development Kit for Windows Store Apps-->MsiExec.exe /I{D11F66FF-82B3-DDB8-1146-525370552BE1}
Windows Software Development Kit-->MsiExec.exe /I{60D5EF2A-4E0C-2C30-38F6-59C26E134F4A}
WinRAR 5.20 (32-bit)-->C:\Program Files (x86)\WinRAR\uninstall.exe

======System event log======

Computer Name: WIN-AEFVGUJURU8
Event Code: 13
Message: Operační systém se vypíná v systémovém čase ‎2014‎-‎03‎-‎18T16:11:06.822346500Z.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20140318161106.822346-000
Event Type: Informace
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 109
Message: Správce napájení jádra inicioval přechod do režimu vypnutí.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Power
Time Written: 20140318161106.025453-000
Event Type: Informace
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 3
Source Name: EventLog
Time Written: 20141204110914.000000-000
Event Type: Informace
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 6009
Message: Microsoft (R) Windows (R) 6.03. 9600 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20141204110914.000000-000
Event Type: Informace
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 6011
Message: Název tohoto počítače v systémech DNS a NetBIOS byl změněn z WIN-AEFVGUJURU8 na WIN-M5LLDKTGJKK.
Record Number: 1
Source Name: EventLog
Time Written: 20141204110914.000000-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: WIN-AEFVGUJURU8
Event Code: 102
Message: svchost (1392) Instance: Databázový stroj (6.03.9600.0000) spouští novou instanci (0).
Record Number: 5
Source Name: ESENT
Time Written: 20141204110922.000000-000
Event Type: Informace
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20141204110914.393885-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-AEFVGUJURU8
Event Code: 9002
Message: Nepodařilo se spustit Správce oken plochy.
Record Number: 3
Source Name: Desktop Window Manager
Time Written: 20141204110914.000000-000
Event Type: Informace
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.


Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20141204110914.096986-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: WIN-AEFVGUJURU8
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20141204110914.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: WIN-AEFVGUJURU8
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7

Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110909.003391-000
Event Type: Úspěšný audit
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: WIN-AEFVGUJURU8$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Typ přihlášení: 5

Úroveň zosobnění: Zosobnění

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x1d8
Název procesu: C:\Windows\System32\services.exe

Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110909.003391-000
Event Type: Úspěšný audit
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.

Počet prvků: 0
ID zásady: 0x3E6C1
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110908.930646-000
Event Type: Úspěšný audit
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0

Typ přihlášení: 0

Úroveň zosobnění: -

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x4
Název procesu:

Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110908.861637-000
Event Type: Úspěšný audit
User:

Computer Name: WIN-AEFVGUJURU8
Event Code: 4608
Message: Spouští se systém Windows.

Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141204110908.861637-000
Event Type: Úspěšný audit
User:

======Environment variables======

"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=3c03
"VS110COMNTOOLS"=C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\Tools\

-----------------EOF-----------------

Zdravím!
Potřebuji vidět obsah souboru log.txt. Tohle je k ničemu.

Pardon, já si to splet s tím info


Logfile of random's system information tool 1.10 (written by random/random)
Run by User007 at 2015-07-26 17:08:06
Microsoft Windows 8.1
System drive C: has 58 GB (51%) free of 114 GB
Total RAM: 8120 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:08:20, on 26. 7. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\User007.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://terra.im/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://terra.im/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://terra.im/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GalaxyClientService - GOG.com - D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9123 bytes

======Listing Processes======





wininit.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-795f4216-0a3e-4874-8612-35636aa9f400 -SystemEventPortName:HostProcess-26727591-f620-40bd-b46d-58bfa978a2de -IoCancelEventPortName:HostProcess-aaacfa11-42b0-46a8-9de6-8249e31d3558 -NonStateChangingEventPortName:HostProcess-9a883c9f-6a73-4473-b238-f16a31c1887e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9619116c-20c0-4e3d-a0d3-566f32a3d303 -DeviceGroupId:WpdFsGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-6e6ae890-a15e-4712-8adb-d9bccb45fab0 -SystemEventPortName:HostProcess-e9647f3e-5360-4d85-8be2-b593a992eed1 -IoCancelEventPortName:HostProcess-d5f29116-0c62-481b-9e0a-c0b0333c4887 -NonStateChangingEventPortName:HostProcess-f08fa9ae-df70-4879-9366-6336ef6419bc -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1b4854c5-3bfd-4ae6-8f6b-cc6bfd663b46 -DeviceGroupId:WudfDefaultDevicePool
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"

C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskhostex.exe
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" afcb58c9-8aef-49c4-9263-62f6dba2a7a3 1
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
dashost.exe {a480bbd9-efc3-4047-b0db373e16c2af52}
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"

taskeng.exe {F410114C-1F67-489E-A5E3-7B2E09CE8B48}
"C:\Users\User007\Downloads\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe67_ Global\UsGthrCtrlFltPipeMssGthrPipe67 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 564 572 65536 568
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll


C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default\searchplugins\
defaultsearch.xml
zbocz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-19 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-19 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-05-28 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-24 2754704]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-06-24 1571696]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"AdobeBridge"= []
"GalaxyClient"= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-07-14 5579624]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08 334896]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.RTV1"=rtvcvfw64.dll
"VIDC.FICV"=ficvdec_x64.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-07-26 17:08:06 ----D---- C:\rsit
2015-07-26 17:08:06 ----D---- C:\Program Files\trend micro
2015-07-25 12:43:57 ----D---- C:\Program Files (x86)\ESET
2015-07-23 15:56:27 ----A---- C:\Windows\system32\atmfd.dll
2015-07-23 15:56:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-23 15:56:23 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-23 15:56:23 ----A---- C:\Windows\system32\atmlib.dll
2015-07-18 08:04:45 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wucltux.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapp.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wups.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wudriver.dll
2015-07-17 18:01:57 ----A---- C:\Windows\system32\wups2.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\win32k.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\certcli.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\shell32.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\profsvc.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-17 18:00:31 ----A---- C:\Windows\system32\generaltel.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\appraiser.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\aeinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\jscript9.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-17 18:00:30 ----A---- C:\Windows\system32\aepdu.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-17 18:00:29 ----A---- C:\Windows\system32\mshtml.dll
2015-07-17 18:00:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-17 18:00:23 ----A---- C:\Windows\system32\ieframe.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\iertutil.dll
2015-07-17 18:00:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-17 18:00:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-17 18:00:02 ----A---- C:\Windows\system32\jscript.dll
2015-07-17 17:59:47 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-17 17:59:37 ----A---- C:\Windows\system32\gdi32.dll
2015-07-17 17:59:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-17 17:59:08 ----A---- C:\Windows\system32\ole32.dll
2015-07-17 17:59:05 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-17 17:58:47 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-17 17:58:46 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-17 17:58:46 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-17 17:58:39 ----A---- C:\Windows\system32\apphelp.dll
2015-07-17 17:58:36 ----A---- C:\Windows\system32\msftedit.dll
2015-07-17 17:58:35 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-14 11:44:38 ----AH---- C:\Windows\system32\drivers\Hamdrv.sys
2015-07-03 23:21:40 ----D---- C:\Users\User007\AppData\Roaming\Wargaming.net
2015-06-29 16:38:33 ----D---- C:\Spacekace
2015-06-27 19:26:13 ----D---- C:\ProgramData\LogMeIn

======List of files/folders modified in the last 1 month======

2015-07-26 17:08:06 ----RD---- C:\Program Files
2015-07-26 17:08:02 ----D---- C:\Windows\Prefetch
2015-07-26 16:00:00 ----D---- C:\Windows\system32\sru
2015-07-26 15:24:15 ----D---- C:\Users\User007\AppData\Roaming\FileZilla
2015-07-26 13:18:54 ----D---- C:\Windows\Temp
2015-07-26 13:14:53 ----D---- C:\Users\User007\AppData\Roaming\TS3Client
2015-07-26 09:50:47 ----D---- C:\Windows\Microsoft.NET
2015-07-26 09:50:39 ----D---- C:\Windows\debug
2015-07-26 09:40:25 ----D---- C:\Program Files (x86)\SpeedFan
2015-07-26 09:39:56 ----D---- C:\Windows\system32\Tasks
2015-07-26 01:30:32 ----D---- C:\Windows\SoftwareDistribution
2015-07-26 01:30:32 ----D---- C:\Windows
2015-07-26 01:29:57 ----D---- C:\Users\User007\AppData\Roaming\DAEMON Tools Lite
2015-07-26 01:29:52 ----D---- C:\Windows\Inf
2015-07-26 01:29:50 ----D---- C:\Windows\Logs
2015-07-26 00:42:19 ----RD---- C:\Windows\System32
2015-07-26 00:42:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-25 12:43:58 ----SD---- C:\Windows\Downloaded Program Files
2015-07-25 12:43:57 ----RD---- C:\Program Files (x86)
2015-07-25 09:46:52 ----D---- C:\Windows\system32\config
2015-07-25 09:42:49 ----SD---- C:\Windows\system32\GWX
2015-07-25 09:39:41 ----D---- C:\Windows\WinSxS
2015-07-25 09:39:40 ----D---- C:\ProgramData\NVIDIA
2015-07-24 23:02:50 ----D---- C:\Windows\SysWOW64
2015-07-24 19:16:58 ----SHD---- C:\Windows\Installer
2015-07-24 18:39:55 ----RSD---- C:\Windows\assembly
2015-07-24 18:39:49 ----SHD---- C:\System Volume Information
2015-07-24 12:49:38 ----HD---- C:\Program Files\WindowsApps
2015-07-24 12:49:38 ----D---- C:\Windows\AppReadiness
2015-07-24 09:55:14 ----D---- C:\Windows\CbsTemp
2015-07-19 22:51:12 ----D---- C:\ProgramData\Oracle
2015-07-19 22:51:10 ----D---- C:\Program Files (x86)\Java
2015-07-19 22:51:05 ----D---- C:\Program Files (x86)\Common Files
2015-07-19 22:50:57 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-07-19 19:39:01 ----D---- C:\Users\User007\AppData\Roaming\.minecraft
2015-07-19 00:14:00 ----RSD---- C:\Windows\Fonts
2015-07-18 15:43:49 ----D---- C:\Windows\rescache
2015-07-18 15:25:45 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-18 12:32:36 ----D---- C:\Windows\system32\catroot2
2015-07-18 10:18:40 ----D---- C:\Windows\system32\DriverStore
2015-07-18 08:04:47 ----D---- C:\Windows\system32\drivers
2015-07-18 01:04:44 ----D---- C:\Windows\WinStore
2015-07-18 01:04:44 ----D---- C:\Program Files\Internet Explorer
2015-07-18 01:04:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-18 01:04:43 ----D---- C:\Windows\system32\cs-CZ
2015-07-18 01:04:43 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-18 01:04:43 ----D---- C:\Windows\apppatch
2015-07-18 01:04:42 ----RD---- C:\Windows\ToastData
2015-07-17 22:55:22 ----D---- C:\Windows\Tasks
2015-07-17 18:10:53 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 18:10:53 ----D---- C:\Windows\system32\wbem
2015-07-17 18:10:53 ----D---- C:\Windows\system32\appraiser
2015-07-17 18:10:35 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-11 13:12:01 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 13:11:52 ----D---- C:\Program Files\Rockstar Games
2015-07-10 13:03:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-08 22:43:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-03 23:20:57 ----D---- C:\Users\User007\AppData\Roaming\OBS
2015-07-03 08:43:04 ----A---- C:\Windows\system32\MRT.exe
2015-06-29 22:22:53 ----D---- C:\ProgramData\Adobe
2015-06-29 13:51:35 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-06-27 19:26:13 ----HD---- C:\ProgramData

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2014-05-28 672104]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-30 283064]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 ALSysIO;ALSysIO; \??\C:\Users\User007\AppData\Local\Temp\ALSysIO64.sys []
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2015-07-14 45680]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-07-26 113880]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-04-03 118272]
R3 NVHDA;@oem20.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-06-17 204648]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-06-17 11011216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-06-24 19600]
R3 nvvad_WaveExtensible;@oem22.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 NVVADARM;@oem27.inf,%NVVADARM.SvcDesc%;NVIDIA Miracast Audio; C:\Windows\system32\drivers\nvvadarm.sys [2015-06-17 39240]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SensorsSimulatorDriver;@oem12.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-10-29 226304]
S3 cpuz138;cpuz138; \??\C:\Windows\TEMP\cpuz138\cpuz138_x64.sys []
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-24 1152656]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-07-14 2540904]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-05-28 16232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-04-03 154584]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-07-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-04-03 398296]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-24 1868432]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-06-24 23007376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-17 937616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-17 410768]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-17 268976]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2015-06-10 1141248]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2015-06-09 233776]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-11-25 614624]
S3 GalaxyClientService;GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-05-29 1751096]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-06-20 6677048]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2015-06-17 1997168]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

-----------------EOF-----------------

OK. Spusťte teď tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v4.208 - Log vytvořen 27/07/2015 v 11:54:53
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-07-26.2 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : User007 - PC
# Spuštěno z : C:\Users\User007\Downloads\adwcleaner_4.208.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Soubor Smazáno : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Steam App 228200

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17840


-\\ Mozilla Firefox v39.0 (x86 en-US)


-\\ Google Chrome v44.0.2403.107


*************************

AdwCleaner[R1].txt - [1329 bytů] - [08/05/2015 08:46:07]
AdwCleaner[R2].txt - [1387 bytů] - [08/05/2015 09:11:13]
AdwCleaner[R3].txt - [1134 bytů] - [27/07/2015 10:40:11]
AdwCleaner[R4].txt - [1192 bytů] - [27/07/2015 11:54:36]
AdwCleaner[S1].txt - [1442 bytů] - [08/05/2015 09:11:59]
AdwCleaner[S2].txt - [1116 bytů] - [27/07/2015 11:54:53]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1174 bytů] ##########

Dejte nový log RSIT.

Logfile of random's system information tool 1.10 (written by random/random)
Run by User007 at 2015-08-03 21:46:57
Microsoft Windows 8.1
System drive C: has 30 GB (26%) free of 114 GB
Total RAM: 8120 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:47:00, on 3. 8. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
D:\Steam\Steam.exe
D:\Steam\bin\steamwebhelper.exe
D:\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe
C:\Program Files\trend micro\User007.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://terra.im/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://terra.im/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://terra.im/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GalaxyClientService - GOG.com - D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9595 bytes

======Listing Processes======





wininit.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"

"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0258393d-a023-43f3-ac15-a7031d1fdf45 -SystemEventPortName:HostProcess-9e5e6cb6-f6c3-4176-88d2-b8945c74159d -IoCancelEventPortName:HostProcess-2c0cad4c-cf30-4530-adca-d3d209c014ee -NonStateChangingEventPortName:HostProcess-6df07ca9-a6ec-48dc-9f6b-60d0824e216c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e088137f-c3c5-4a39-8cc5-6c8d7cac95dc -DeviceGroupId:WudfDefaultDevicePool
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-96bc915d-0ec5-4e04-9374-7b0370af71ff -SystemEventPortName:HostProcess-07d18062-314b-4ed8-98ad-b8ad3befac2a -IoCancelEventPortName:HostProcess-2e3a46ca-72dc-4f03-97ea-a6f756f6380e -NonStateChangingEventPortName:HostProcess-0ef37d44-a38b-4892-a39b-8e8db145a2a1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1d6b860a-3049-4d67-8db0-128d5df93ed2 -DeviceGroupId:WpdFsGroup

"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k imgsvc
dashost.exe {6bf520e1-95f7-460d-81b316c5e7b0d7bd}

C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\Explorer.EXE
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
taskhostex.exe
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" afcb58c9-8aef-49c4-9263-62f6dba2a7a3
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\SpeedFan\speedfan.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"D:\Steam\Steam.exe"
"D:\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\User007\AppData\Local\Steam\htmlcache" -steampid 6076 -buildid 1437790054 -steamid "0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"D:\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --product-version="Valve Steam Client" --disable-spell-checking --enable-system-flash --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=3476 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --disable-gpu-compositing --channel="3476.0.1207662705\435038241" /prefetch:673131151
wimserv.exe 7d86d71f-078f-4012-83fa-6ee264cc04db
C:\Windows\System32\svchost.exe -k utcsvc
taskhost.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="7020.0.338293653\1120734838" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 7020 "\\.\pipe\gecko-crash-server-pipe.7020" plugin
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe" --proxy-stub-channel=Flash5000.6EC5D9E8.19840 --host-broker-channel=Flash5000.6EC5D9E8.27484 --host-pid=5000 --host-npapi-version=28 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_18_0_0_209.dll"
"C:\Windows\SYSTEM32\Macromed\Flash\FlashPlayerPlugin_18_0_0_209.exe" --channel=7160.0095F67C.1780130300 --proxy-stub-channel=Flash5000.6EC5D9E8.19840 --plugin-path="C:\Windows\SYSTEM32\Macromed\Flash\NPSWF32_18_0_0_209.dll" --host-npapi-version=28 --type=renderer

taskeng.exe {D741B713-FF52-4DDC-8914-D080F5A2DB98}
"C:\Users\User007\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=d:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll


C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default\searchplugins\
defaultsearch.xml
zbocz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-19 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-19 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3933496]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-05-28 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"AdobeBridge"= []
"GalaxyClient"= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-07-14 5579624]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08 334896]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"VIDC.RTV1"=rtvcvfw64.dll
"VIDC.FICV"=ficvdec_x64.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-08-03 13:00:25 ----D---- C:\Program Files\Tracker Software
2015-07-30 17:04:14 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-07-30 17:02:52 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvopencl.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvoglv64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvmcumd.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvinitx.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvIFR64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\NvFBC64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\nvdispgenco6435362.dll
2015-07-30 17:02:52 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-07-30 17:02:51 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvdispco6435362.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcuvid.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcuda.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvcompiler.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\nvaudcaparm.dll
2015-07-30 17:02:51 ----A---- C:\Windows\system32\drivers\nvvadarm.sys
2015-07-29 16:06:51 ----D---- C:\Program Files (x86)\Overwolf
2015-07-29 16:06:50 ----D---- C:\ProgramData\Overwolf
2015-07-29 15:59:41 ----D---- C:\Windows\LastGood.Tmp
2015-07-29 15:59:35 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-07-29 15:59:35 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-07-28 17:40:26 ----D---- C:\Program Files (x86)\Microsoft XNA
2015-07-28 10:11:59 ----A---- C:\Windows\system32\appraiser.dll
2015-07-26 17:08:06 ----D---- C:\rsit
2015-07-26 17:08:06 ----D---- C:\Program Files\trend micro
2015-07-25 12:43:57 ----D---- C:\Program Files (x86)\ESET
2015-07-23 15:56:27 ----A---- C:\Windows\system32\atmfd.dll
2015-07-23 15:56:24 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-23 15:56:23 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-23 15:56:23 ----A---- C:\Windows\system32\atmlib.dll
2015-07-18 08:04:45 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-17 18:01:59 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wucltux.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapp.exe
2015-07-17 18:01:59 ----A---- C:\Windows\system32\wuapi.dll
2015-07-17 18:01:59 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-17 18:01:58 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wups.dll
2015-07-17 18:01:58 ----A---- C:\Windows\system32\wudriver.dll
2015-07-17 18:01:57 ----A---- C:\Windows\system32\wups2.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\win32k.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\WiFiDisplay.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\kerberos.dll
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-17 18:00:40 ----A---- C:\Windows\system32\certcli.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\werdiagcontroller.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\shell32.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\profsvc.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msiexec.exe
2015-07-17 18:00:39 ----A---- C:\Windows\system32\msi.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\GeofenceMonitorService.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\authui.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\audiosrv.dll
2015-07-17 18:00:39 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\sermouse.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\mouclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdhid.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\kbdclass.sys
2015-07-17 18:00:38 ----AC---- C:\Windows\system32\drivers\i8042prt.sys
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-07-17 18:00:38 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-07-17 18:00:38 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-07-17 18:00:31 ----A---- C:\Windows\system32\generaltel.dll
2015-07-17 18:00:31 ----A---- C:\Windows\system32\aeinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\WSShared.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\jscript9.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\invagent.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\devinv.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-17 18:00:30 ----A---- C:\Windows\system32\aepdu.dll
2015-07-17 18:00:30 ----A---- C:\Windows\system32\acmigration.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-17 18:00:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-17 18:00:29 ----A---- C:\Windows\system32\mshtml.dll
2015-07-17 18:00:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-17 18:00:23 ----A---- C:\Windows\system32\ieframe.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\urlmon.dll
2015-07-17 18:00:22 ----A---- C:\Windows\system32\iertutil.dll
2015-07-17 18:00:04 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\wininet.dll
2015-07-17 18:00:04 ----A---- C:\Windows\system32\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-17 18:00:03 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\webcheck.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\vbscript.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msrating.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\inetcomm.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieui.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\iepeers.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-17 18:00:03 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-17 18:00:02 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-17 18:00:02 ----A---- C:\Windows\system32\jscript.dll
2015-07-17 17:59:47 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-17 17:59:37 ----A---- C:\Windows\system32\gdi32.dll
2015-07-17 17:59:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-17 17:59:08 ----A---- C:\Windows\system32\ole32.dll
2015-07-17 17:59:05 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-17 17:58:47 ----A---- C:\Windows\system32\fhcpl.dll
2015-07-17 17:58:46 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2015-07-17 17:58:46 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-17 17:58:39 ----A---- C:\Windows\system32\apphelp.dll
2015-07-17 17:58:36 ----A---- C:\Windows\system32\msftedit.dll
2015-07-17 17:58:35 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-07-14 11:44:38 ----AH---- C:\Windows\system32\drivers\Hamdrv.sys
2015-07-10 18:25:24 ----HD---- C:\$Windows.~BT

======List of files/folders modified in the last 1 month======

2015-08-03 20:44:43 ----D---- C:\Windows\Temp
2015-08-03 20:40:02 ----D---- C:\Windows\Prefetch
2015-08-03 20:38:55 ----D---- C:\Windows\Microsoft.NET
2015-08-03 20:34:02 ----D---- C:\Users\User007\AppData\Roaming\TS3Client
2015-08-03 20:02:00 ----D---- C:\Windows\system32\sru
2015-08-03 18:01:30 ----D---- C:\Users\User007\AppData\Roaming\FileZilla
2015-08-03 14:47:50 ----SHD---- C:\Windows\Installer
2015-08-03 14:47:50 ----D---- C:\Windows
2015-08-03 14:47:32 ----RSD---- C:\Windows\assembly
2015-08-03 13:44:28 ----SHD---- C:\System Volume Information
2015-08-03 13:00:25 ----RD---- C:\Program Files
2015-08-03 11:13:42 ----D---- C:\Windows\Panther
2015-08-03 11:02:10 ----D---- C:\Windows\AppReadiness
2015-08-03 10:59:15 ----D---- C:\Windows\system32\config
2015-08-03 10:56:20 ----HD---- C:\Program Files\WindowsApps
2015-08-03 10:56:17 ----D---- C:\Windows\Logs
2015-08-03 10:48:33 ----D---- C:\Windows\system32\Tasks
2015-08-03 10:43:17 ----D---- C:\Program Files (x86)\SpeedFan
2015-07-31 15:01:55 ----D---- C:\Users\User007\AppData\Roaming\vlc
2015-07-31 12:12:55 ----D---- C:\Users\User007\AppData\Roaming\OBS
2015-07-30 17:11:38 ----RD---- C:\Windows\System32
2015-07-30 17:11:38 ----D---- C:\Windows\Inf
2015-07-30 17:11:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-07-30 17:05:33 ----D---- C:\ProgramData\NVIDIA
2015-07-30 17:05:29 ----D---- C:\Windows\SysWOW64
2015-07-30 17:04:32 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-30 17:04:12 ----D---- C:\Windows\system32\DriverStore
2015-07-30 17:03:51 ----D---- C:\Windows\system32\drivers
2015-07-29 16:06:51 ----RD---- C:\Program Files (x86)
2015-07-29 16:06:51 ----D---- C:\Program Files (x86)\Common Files
2015-07-29 16:06:50 ----HD---- C:\ProgramData
2015-07-29 11:25:31 ----D---- C:\Windows\WinSxS
2015-07-28 16:28:39 ----D---- C:\Program Files\OBS
2015-07-28 10:52:42 ----D---- C:\Program Files (x86)\OBS
2015-07-28 10:11:42 ----D---- C:\Windows\CbsTemp
2015-07-27 11:54:53 ----D---- C:\AdwCleaner
2015-07-26 09:50:39 ----D---- C:\Windows\debug
2015-07-26 01:30:32 ----D---- C:\Windows\SoftwareDistribution
2015-07-26 01:29:57 ----D---- C:\Users\User007\AppData\Roaming\DAEMON Tools Lite
2015-07-25 12:43:58 ----SD---- C:\Windows\Downloaded Program Files
2015-07-25 09:42:49 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-07-23 06:06:23 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\OpenCL.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvmcvadgenco64.dll
2015-07-23 06:06:23 ----A---- C:\Windows\system32\nvapi64.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvvsvc.exe
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvsvcr.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvshext.dll
2015-07-23 03:31:29 ----A---- C:\Windows\system32\nvmctray.dll
2015-07-23 03:31:28 ----A---- C:\Windows\system32\nvsvc64.dll
2015-07-23 03:31:28 ----A---- C:\Windows\system32\nvcpl.dll
2015-07-19 22:51:12 ----D---- C:\ProgramData\Oracle
2015-07-19 22:51:10 ----D---- C:\Program Files (x86)\Java
2015-07-19 22:50:57 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-07-19 19:39:01 ----D---- C:\Users\User007\AppData\Roaming\.minecraft
2015-07-19 00:14:00 ----RSD---- C:\Windows\Fonts
2015-07-18 15:43:49 ----D---- C:\Windows\rescache
2015-07-18 15:25:45 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-18 12:32:36 ----D---- C:\Windows\system32\catroot2
2015-07-18 01:04:44 ----D---- C:\Windows\WinStore
2015-07-18 01:04:44 ----D---- C:\Program Files\Internet Explorer
2015-07-18 01:04:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-18 01:04:43 ----D---- C:\Windows\system32\cs-CZ
2015-07-18 01:04:43 ----D---- C:\Windows\system32\CodeIntegrity
2015-07-18 01:04:43 ----D---- C:\Windows\apppatch
2015-07-18 01:04:42 ----RD---- C:\Windows\ToastData
2015-07-17 22:55:22 ----D---- C:\Windows\Tasks
2015-07-17 18:10:53 ----SD---- C:\Windows\system32\CompatTel
2015-07-17 18:10:53 ----D---- C:\Windows\system32\wbem
2015-07-17 18:10:53 ----D---- C:\Windows\system32\appraiser
2015-07-17 18:10:35 ----D---- C:\Windows\system32\MRT
2015-07-13 23:10:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-07-11 13:12:01 ----D---- C:\Program Files (x86)\Rockstar Games
2015-07-11 13:11:52 ----D---- C:\Program Files\Rockstar Games
2015-07-10 13:03:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-07-08 22:43:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-05 12:08:23 ----N---- C:\Windows\system32\MpSigStub.exe
2015-07-04 17:37:48 ----D---- C:\Users\User007\AppData\Roaming\Wargaming.net

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2014-05-28 672104]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\Windows\System32\drivers\dtsoftbus01.sys [2015-01-30 283064]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R3 ALSysIO;ALSysIO; \??\C:\Users\User007\AppData\Local\Temp\ALSysIO64.sys []
R3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\Windows\system32\DRIVERS\Hamdrv.sys [2015-07-14 45680]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-08-03 113880]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 64216]
R3 MEIx64;@oem9.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-04-03 118272]
R3 NVHDA;@oem20.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-06-17 204648]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2015-07-23 11055248]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;@oem29.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 NVVADARM;@oem30.inf,%NVVADARM.SvcDesc%;NVIDIA Miracast Audio; C:\Windows\system32\drivers\nvvadarm.sys [2015-07-23 39056]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 SensorsSimulatorDriver;@oem12.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-10-29 226304]
S3 cpuz138;cpuz138; \??\C:\Windows\TEMP\cpuz138\cpuz138_x64.sys []
S3 GPUZ;GPUZ; \??\C:\Windows\TEMP\GPUZ.sys []
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-10-29 38792]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-07-14 2540904]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-05-28 16232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-04-03 154584]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-07-14 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-04-03 398296]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-06-18 1871160]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-07-23 937616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-02-03 76152]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-07-23 410952]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-17 268976]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2015-06-10 1141248]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2014-10-29 38792]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2015-06-09 233776]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2014-11-25 614624]
S3 GalaxyClientService;GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2015-05-29 1751096]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-06-20 6677048]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-10 107848]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-07-08 148136]
S3 Origin Client Service;Origin Client Service; D:\Origin\OriginClientService.exe [2015-06-17 1997168]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-07-19 1001200]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

-----------------EOF-----------------

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Users\User007\AppData\Roaming\Mozilla\Firefox\Profiles\h5lz5b1s.default\searchplugins\defaultsearch.xml

:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.