Logfile of random's system information tool 1.10 (written by random/random)
Run by Lukáš at 2015-11-04 20:54:03
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 59 GB (15%) free of 400 GB
Total RAM: 3543 MB (61% free)
======Scheduled tasks folder======
C:\Windows\tasks\0915tbUpdateInfo.job - C:\ProgramData\Avg_Update_0915tb\0915tb_{B1FFB811-91D9-4DE5-9B07-6AF6C91A7F0E}.exe /SETINFO /CMPID=0915tb /INFORETRY=3 /RUNBY=UP
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\0vhihc2y.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2013-06-27 6323928]
"USB3MON"=C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"RUSB3MON"=C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"Super-Charger"=C:\Program Files\MSI\Super-Charger\Super-Charger.exe [2013-03-08 506864]
"AVG_UI"=C:\Program Files\AVG\AVG2015\avgui.exe [2015-10-19 3779496]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2015-10-12 2655520]
"ShadowPlay"=C:\Windows\system32\nvspcap.dll [2015-10-12 1423304]
"Nero MediaHome 4"=C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-06-23 4891944]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2007-12-10 323584]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"ADSKAppManager"=C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [2015-09-07 523144]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-02-19 5503768]
"Nero MediaHome 4"=C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-06-23 4891944]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-26 4556048]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-27 57987712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux3"=wdmaud.drv
"wave7"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux4"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-11-04 20:54:04 ----D---- C:\Program Files\trend micro
2015-11-04 20:54:03 ----D---- C:\rsit
2015-11-04 20:01:41 ----A---- C:\Windows\system32\nvStreaming.exe
2015-11-04 19:59:08 ----A---- C:\Windows\system32\nvhdap32.dll
2015-11-04 19:59:07 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2015-11-04 19:59:05 ----A---- C:\Windows\system32\nvumdshim.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvopencl.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvoglv32.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvoglshim32.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\nvinit.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\NvIFR.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-11-04 19:59:02 ----A---- C:\Windows\system32\NvFBC.dll
2015-11-04 19:59:02 ----A---- C:\Windows\system32\nvEncodeAPI.dll
2015-11-04 19:59:02 ----A---- C:\Windows\system32\nvdispgenco3235887.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvdispco3235887.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvcuvid.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvcuda.dll
2015-11-04 19:58:57 ----A---- C:\Windows\system32\nvcompiler.dll
2015-11-04 16:56:03 ----D---- C:\ProgramData\Avg_Update_0615piz
2015-11-04 16:53:31 ----D---- C:\AdwCleaner
2015-11-04 09:53:33 ----D---- C:\ProgramData\Malwarebytes
2015-11-04 09:53:33 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2015-10-24 10:42:01 ----D---- C:\Users\Lukáš\AppData\Roaming\AVG
2015-10-24 10:36:31 ----D---- C:\ProgramData\Avg
2015-10-22 16:55:08 ----D---- C:\Program Files\Mozilla Firefox
2015-10-19 12:38:58 ----A---- C:\Windows\system32\drivers\avgidsdriverx.sys
2015-10-15 16:21:34 ----A---- C:\Windows\system32\invagent.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\generaltel.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\devinv.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-10-15 16:21:34 ----A---- C:\Windows\system32\appraiser.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\aeinv.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\acmigration.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\urlmon.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\occache.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\msfeeds.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\jsproxy.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\jscript9diag.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieUnatt.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\iernonce.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\iedkcs32.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieapfltr.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ie4uinit.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\dxtmsft.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\wininet.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\webcheck.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\msrating.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\iesetup.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\iertutil.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\ieui.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\ieframe.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\dxtrans.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\mshtmled.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-10-14 15:02:08 ----A---- C:\Windows\system32\mshtml.dll
2015-10-14 15:02:08 ----A---- C:\Windows\system32\jscript9.dll
2015-10-14 15:02:07 ----A---- C:\Windows\system32\vbscript.dll
2015-10-14 15:02:07 ----A---- C:\Windows\system32\jscript.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\ucrtbase.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\wdigest.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\TSpkg.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\sspisrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\sspicli.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\srcore.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\srclient.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\smss.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\schannel.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\secur32.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\rstrui.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\rpcrt4.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntdll.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ncrypt.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msv1_0.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msobjs.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msaudite.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\lsass.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\lsasrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\kerberos.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\csrsrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\cryptbase.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\credssp.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\auditpol.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\apisetschema.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\adtschema.dll
2015-10-14 15:01:03 ----A---- C:\Windows\system32\shell32.dll
2015-10-14 15:01:03 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-10-14 15:01:02 ----A---- C:\Windows\system32\wuaueng.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuwebv.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wups2.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wups.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wudriver.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wucltux.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuauclt.exe
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuapp.exe
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuapi.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\drivers\appid.sys
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidsvc.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidapi.dll
2015-10-11 16:21:53 ----D---- C:\ProgramData\RELOADED
2015-10-11 16:14:53 ----D---- C:\Program Files\FlatOut 3
2015-10-10 16:58:11 ----A---- C:\Windows\system32\nvdispgenco3235850.dll
2015-10-10 16:58:11 ----A---- C:\Windows\system32\nvdispco3235850.dll
======List of files/folders modified in the last 1 month======
2015-11-04 20:54:53 ----D---- C:\Users\Lukáš\AppData\Roaming\Skype
2015-11-04 20:54:22 ----D---- C:\Windows\system32\config
2015-11-04 20:54:04 ----RD---- C:\Program Files
2015-11-04 20:51:03 ----D---- C:\Windows
2015-11-04 20:49:44 ----D---- C:\ProgramData\NVIDIA
2015-11-04 20:49:30 ----D---- C:\Windows\System32
2015-11-04 20:48:11 ----HD---- C:\ProgramData
2015-11-04 20:48:11 ----D---- C:\Program Files\Common Files
2015-11-04 20:43:59 ----D---- C:\Windows\Temp
2015-11-04 20:18:22 ----D---- C:\Windows\Microsoft.NET
2015-11-04 20:02:05 ----D---- C:\ProgramData\NVIDIA Corporation
2015-11-04 20:01:59 ----D---- C:\Windows\inf
2015-11-04 20:01:39 ----D---- C:\Windows\system32\DriverStore
2015-11-04 20:01:33 ----D---- C:\Windows\system32\drivers
2015-11-04 19:51:19 ----SD---- C:\Windows\system32\GWX
2015-11-04 19:51:19 ----D---- C:\Windows\system32\catroot2
2015-11-04 19:51:12 ----D---- C:\Windows\winsxs
2015-11-04 19:49:37 ----D---- C:\Windows\system32\CodeIntegrity
2015-11-04 19:48:57 ----D---- C:\Windows\AppCompat
2015-11-04 19:48:44 ----SD---- C:\Users\Lukáš\AppData\Roaming\Microsoft
2015-11-04 19:48:43 ----D---- C:\Users\Lukáš\AppData\Roaming\AVG2015
2015-11-04 19:48:43 ----D---- C:\Users\Lukáš\AppData\Roaming\Autodesk
2015-11-04 19:48:07 ----HD---- C:\SuperChargerProfile
2015-11-04 19:48:03 ----D---- C:\ProgramData\AVG2015
2015-11-04 19:47:55 ----D---- C:\ProgramData\Autodesk
2015-11-04 19:47:20 ----D---- C:\Program Files\Need for Speed - Rivals - Complete Edition
2015-11-04 19:47:20 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-04 19:47:01 ----D---- C:\Program Files\AVG
2015-11-04 19:46:59 ----D---- C:\Program Files\HappyFoto-Designer
2015-11-04 19:44:54 ----SHD---- C:\Windows\Installer
2015-11-04 19:43:17 ----D---- C:\Windows\registration
2015-11-04 19:42:16 ----D---- C:\ProgramData\MFAData
2015-11-04 19:40:58 ----D---- C:\Windows\ServiceProfiles
2015-11-04 19:40:57 ----D---- C:\Windows\PixArt
2015-11-04 19:40:57 ----D---- C:\Windows\Migration
2015-11-04 19:39:16 ----D---- C:\Users\Lukáš\AppData\Roaming\Wargaming.net
2015-11-04 19:39:15 ----D---- C:\Users\Lukáš\AppData\Roaming\Reallusion
2015-11-04 19:39:03 ----D---- C:\Users\Lukáš\AppData\Roaming\DAEMON Tools Lite
2015-11-04 19:38:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-04 19:37:41 ----D---- C:\ProgramData\Skype
2015-11-04 19:37:40 ----D---- C:\ProgramData\Package Cache
2015-11-04 19:37:20 ----D---- C:\ProgramData\AVG Web TuneUp
2015-11-04 19:37:02 ----D---- C:\ProgramData\Adobe
2015-11-04 19:37:00 ----D---- C:\Program Files\Western Digital
2015-11-04 19:36:46 ----D---- C:\Program Files\Nero
2015-11-04 19:36:36 ----D---- C:\Program Files\Microsoft Visual Studio 8
2015-11-04 19:36:36 ----D---- C:\Program Files\Microsoft Synchronization Services
2015-11-04 19:36:35 ----D---- C:\Program Files\Microsoft Sync Framework
2015-11-04 19:36:35 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2015-11-04 19:36:31 ----D---- C:\Program Files\Microsoft Office
2015-11-04 19:36:31 ----D---- C:\Program Files\Microsoft Analysis Services
2015-11-04 19:36:31 ----D---- C:\Program Files\KYE SYSTEMS CORP
2015-11-04 19:36:22 ----D---- C:\Windows\Tasks
2015-11-04 19:36:22 ----D---- C:\Windows\system32\Tasks
2015-11-04 19:36:20 ----D---- C:\Program Files\Euro Truck Simulator 2
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\Reallusion
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\PAC7302
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\Nero
2015-11-04 19:36:14 ----D---- C:\Program Files\Common Files\Macrovision Shared
2015-11-04 19:36:07 ----D---- C:\Program Files\Common Files\AV
2015-11-04 19:35:20 ----D---- C:\Program Files\Common Files\Adobe
2015-11-04 19:34:55 ----D---- C:\Program Files\AVG Web TuneUp
2015-11-04 19:31:25 ----RHD---- C:\MSOCache
2015-11-04 19:31:25 ----D---- C:\Program Files\Adobe
2015-11-04 19:31:17 ----D---- C:\Autodesk
2015-11-04 19:28:47 ----D---- C:\Program Files\Common Files\Autodesk Shared
2015-11-04 19:27:29 ----SHD---- C:\System Volume Information
2015-11-04 19:22:06 ----RSD---- C:\Windows\Fonts
2015-11-04 18:52:51 ----D---- C:\Windows\system32\wfp
2015-11-04 18:52:51 ----D---- C:\Program Files\Internet Explorer
2015-11-04 18:52:50 ----D---- C:\Program Files\DAEMON Tools Lite
2015-11-04 18:52:47 ----D---- C:\Windows\system32\wbem
2015-11-04 17:47:02 ----HD---- C:\$AVG
2015-11-04 16:59:02 ----D---- C:\Windows\Prefetch
2015-11-02 23:47:49 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\OpenCL.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvwgf2um.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvd3dum.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvapi.dll
2015-11-02 14:18:59 ----A---- C:\Windows\system32\nvsvc.dll
2015-11-02 14:18:59 ----A---- C:\Windows\system32\nvcpl.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvvsvc.exe
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvsvcr.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvshext.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvmctray.dll
2015-10-31 18:33:57 ----D---- C:\Windows\debug
2015-10-17 17:40:28 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-10-15 21:49:13 ----SD---- C:\Windows\system32\CompatTel
2015-10-15 21:49:13 ----D---- C:\Windows\system32\appraiser
2015-10-15 21:49:13 ----D---- C:\Windows\AppPatch
2015-10-15 20:13:49 ----D---- C:\Windows\rescache
2015-10-14 17:42:17 ----D---- C:\Windows\system32\cs-CZ
2015-10-14 17:42:15 ----D---- C:\Windows\system32\en-US
2015-10-14 15:10:11 ----D---- C:\Windows\system32\MRT
2015-10-14 15:06:59 ----A---- C:\Windows\system32\MRT.exe
2015-10-12 04:05:01 ----A---- C:\Windows\system32\nvspcap.dll
2015-10-12 04:05:01 ----A---- C:\Windows\system32\nvspbridge.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2015-08-19 222640]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-05-07 290272]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2015-08-04 189872]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-03-20 35808]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 16880]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-03-11 132576]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2015-10-19 252336]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-07-23 31664]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-08-04 230832]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-03-19 25104]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-07-02 2700312]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 361968]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 793072]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2013-05-17 56432]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files\MSI\Super-Charger\NTIOLib.sys [2012-10-26 14392]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2015-11-02 170128]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-10-12 19744]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2015-08-11 44840]
R3 PAC7302;Eye 312; C:\Windows\system32\DRIVERS\PAC7302.SYS [2009-04-28 461824]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2013-04-10 651848]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-08-27 91016]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-08-27 181128]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2015-01-27 11520]
S1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-06-16 207328]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2015-06-11 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdAppMgrSvc;Autodesk Application Manager Service; C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [2015-09-07 1136520]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-10-12 922400]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 583680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-17 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-17 366552]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files\MSI\Super-Charger\ChargeService.exe [2013-02-20 161264]
R2 MSI_Trigger_Service;MSI_Trigger_Service; C:\Program Files\MSI\MSITrigger\MSI_Trigger_Service.exe [2013-05-28 29728]
R2 NeroMediaHomeService.4;Nero MediaHome 4 Service; C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe [2009-06-23 259368]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-10-12 1873696]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-10-12 4325664]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-11-02 671352]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-11-02 417584]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [2015-11-04 1205136]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-26 1032464]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [2015-10-19 3642280]
S2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [2015-10-19 335656]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-08 104912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-03-12 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2012-07-08 46528]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2015-09-18 1087792]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-03-12 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-09-16 102912]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 637912]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-22 147624]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zdravím!
Jak je na tom váš oper. systém s legalitou?
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Dobrý večer
Operační systém je ok
Operační systém je ok
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
OK. Zkusíme ten to sken.
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
a klikněte na >Prohledat<. Dejte oba logy.CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Bohužel jediný výsledek je ve spodním řádku Manual File Scan - Getting folder structure.....
a vyskočí okno Out of memory
a vyskočí okno Out of memory
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zkuste to v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Bohužel stejný výsledek.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
OK. Udělejte tedy kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Malwarebytes Anti-Malware
www.malwarebytes.org
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malware Protection, Starting,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malware Protection, Started,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Starting,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Started,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, IP Database, 2015.9.21.2, 2015.11.4.1,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, Rootkit Database, 2015.9.18.1, 2015.11.4.2,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, Domain Database, 2015.9.22.3, 2015.11.5.7,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, Remediation Database, 2015.9.16.1, 2015.11.4.1,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, Malware Database, 2015.9.22.5, 2015.11.5.5,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Refresh, Starting,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Stopping,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Stopped,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Refresh, Success,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Starting,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Started,
Scan, 5.11.2015 19:45, SYSTEM, LUKÁŠ-PC, Context, Začátek: 5.11.2015 19:37, Doba trvání: 7 min 47 sekund, Sken hrozeb, Dokončeno, Detekce malwaru 0, Detekce jiných hrozeb 0,
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 5.11.2015
Čas skenování: 19:37
Protokol: log.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2015.11.05.05
Databáze rootkitů: v2015.11.04.02
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Lukáš
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 335449
Uplynulý čas: 7 min, 47 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malware Protection, Starting,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malware Protection, Started,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Starting,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Started,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, IP Database, 2015.9.21.2, 2015.11.4.1,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, Rootkit Database, 2015.9.18.1, 2015.11.4.2,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, Domain Database, 2015.9.22.3, 2015.11.5.7,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, Remediation Database, 2015.9.16.1, 2015.11.4.1,
Update, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Manual, Malware Database, 2015.9.22.5, 2015.11.5.5,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Refresh, Starting,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Stopping,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Stopped,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Refresh, Success,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Starting,
Protection, 5.11.2015 19:37, SYSTEM, LUKÁŠ-PC, Protection, Malicious Website Protection, Started,
Scan, 5.11.2015 19:45, SYSTEM, LUKÁŠ-PC, Context, Začátek: 5.11.2015 19:37, Doba trvání: 7 min 47 sekund, Sken hrozeb, Dokončeno, Detekce malwaru 0, Detekce jiných hrozeb 0,
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 5.11.2015
Čas skenování: 19:37
Protokol: log.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2015.11.05.05
Databáze rootkitů: v2015.11.04.02
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Lukáš
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 335449
Uplynulý čas: 7 min, 47 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Vir tam není. Koukneme teď na AdWary a zbytečnosti. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Logfile of random's system information tool 1.10 (written by random/random)
Run by Lukáš at 2015-11-05 20:55:14
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 51 GB (13%) free of 400 GB
Total RAM: 3543 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:55:39, on 5.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18057)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\GWX\GWX.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Lukáš\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\notepad.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files\MSI\Super-Charger\Super-Charger.exe
C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Lukáš\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Lukáš\Desktop\RSIT.exe
C:\Program Files\trend micro\Lukáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={914E884F ... 2015-03-22 08:56:18&v=4.1.0.411&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe" -s
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [Nero MediaHome 4] "C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\Windows\PixArt\PAC7302\Monitor.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [ADSKAppManager] "C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [Nero MediaHome 4] "C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-4286238508-1785611496-305423611-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NeroMediaHomeUser.4')
O4 - HKUS\S-1-5-21-4286238508-1785611496-305423611-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NeroMediaHomeUser.4')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files\MSI\Super-Charger\ChargeService.exe
O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files\MSI\MSITrigger\MSI_Trigger_Service.exe
O23 - Service: Nero MediaHome 4 Service (NeroMediaHomeService.4) - Nero AG - C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 9848 bytes
======Scheduled tasks folder======
C:\Windows\tasks\0915tbUpdateInfo.job - C:\ProgramData\Avg_Update_0915tb\0915tb_{B1FFB811-91D9-4DE5-9B07-6AF6C91A7F0E}.exe /SETINFO /CMPID=0915tb /INFORETRY=3 /RUNBY=UP
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\0vhihc2y.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2013-06-27 6323928]
"USB3MON"=C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"RUSB3MON"=C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"Super-Charger"=C:\Program Files\MSI\Super-Charger\Super-Charger.exe [2013-03-08 506864]
"AVG_UI"=C:\Program Files\AVG\AVG2015\avgui.exe [2015-10-19 3779496]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2015-10-12 2655520]
"ShadowPlay"=C:\Windows\system32\nvspcap.dll [2015-10-12 1423304]
"Nero MediaHome 4"=C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-06-23 4891944]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2007-12-10 323584]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"ADSKAppManager"=C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [2015-09-07 523144]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-02-19 5503768]
"Nero MediaHome 4"=C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-06-23 4891944]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-26 4556048]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-27 57987712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux3"=wdmaud.drv
"wave7"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux4"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave5"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-11-05 20:50:55 ----D---- C:\_OTM
2015-11-05 19:37:02 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-11-05 19:36:47 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-11-05 19:36:46 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-11-05 19:36:46 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-11-05 18:39:23 ----A---- C:\Windows\ntbtlog.txt
2015-11-04 20:54:04 ----D---- C:\Program Files\trend micro
2015-11-04 20:54:03 ----D---- C:\rsit
2015-11-04 20:01:41 ----A---- C:\Windows\system32\nvStreaming.exe
2015-11-04 19:59:08 ----A---- C:\Windows\system32\nvhdap32.dll
2015-11-04 19:59:07 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2015-11-04 19:59:05 ----A---- C:\Windows\system32\nvumdshim.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvopencl.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvoglv32.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvoglshim32.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\nvinit.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\NvIFR.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-11-04 19:59:02 ----A---- C:\Windows\system32\NvFBC.dll
2015-11-04 19:59:02 ----A---- C:\Windows\system32\nvEncodeAPI.dll
2015-11-04 19:59:02 ----A---- C:\Windows\system32\nvdispgenco3235887.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvdispco3235887.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvcuvid.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvcuda.dll
2015-11-04 19:58:57 ----A---- C:\Windows\system32\nvcompiler.dll
2015-11-04 16:56:03 ----D---- C:\ProgramData\Avg_Update_0615piz
2015-11-04 16:53:31 ----D---- C:\AdwCleaner
2015-11-04 09:53:33 ----D---- C:\ProgramData\Malwarebytes
2015-11-04 09:53:33 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2015-10-24 10:42:01 ----D---- C:\Users\Lukáš\AppData\Roaming\AVG
2015-10-24 10:36:31 ----D---- C:\ProgramData\Avg
2015-10-22 16:55:08 ----D---- C:\Program Files\Mozilla Firefox
2015-10-19 12:38:58 ----A---- C:\Windows\system32\drivers\avgidsdriverx.sys
2015-10-15 16:21:34 ----A---- C:\Windows\system32\invagent.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\generaltel.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\devinv.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-10-15 16:21:34 ----A---- C:\Windows\system32\appraiser.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\aeinv.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\acmigration.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\urlmon.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\occache.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\msfeeds.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\jsproxy.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\jscript9diag.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieUnatt.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\iernonce.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\iedkcs32.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieapfltr.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ie4uinit.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\dxtmsft.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\wininet.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\webcheck.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\msrating.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\iesetup.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\iertutil.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\ieui.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\ieframe.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\dxtrans.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\mshtmled.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-10-14 15:02:08 ----A---- C:\Windows\system32\mshtml.dll
2015-10-14 15:02:08 ----A---- C:\Windows\system32\jscript9.dll
2015-10-14 15:02:07 ----A---- C:\Windows\system32\vbscript.dll
2015-10-14 15:02:07 ----A---- C:\Windows\system32\jscript.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\ucrtbase.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\wdigest.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\TSpkg.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\sspisrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\sspicli.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\srcore.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\srclient.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\smss.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\schannel.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\secur32.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\rstrui.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\rpcrt4.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntdll.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ncrypt.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msv1_0.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msobjs.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msaudite.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\lsass.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\lsasrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\kerberos.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\csrsrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\cryptbase.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\credssp.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\auditpol.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\apisetschema.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\adtschema.dll
2015-10-14 15:01:03 ----A---- C:\Windows\system32\shell32.dll
2015-10-14 15:01:03 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-10-14 15:01:02 ----A---- C:\Windows\system32\wuaueng.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuwebv.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wups2.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wups.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wudriver.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wucltux.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuauclt.exe
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuapp.exe
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuapi.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\drivers\appid.sys
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidsvc.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidapi.dll
2015-10-11 16:21:53 ----D---- C:\ProgramData\RELOADED
2015-10-11 16:14:53 ----D---- C:\Program Files\FlatOut 3
2015-10-10 16:58:11 ----A---- C:\Windows\system32\nvdispgenco3235850.dll
2015-10-10 16:58:11 ----A---- C:\Windows\system32\nvdispco3235850.dll
======List of files/folders modified in the last 1 month======
2015-11-05 20:53:26 ----D---- C:\Users\Lukáš\AppData\Roaming\Skype
2015-11-05 20:52:30 ----D---- C:\Windows\Temp
2015-11-05 20:52:02 ----D---- C:\ProgramData\NVIDIA
2015-11-05 20:50:56 ----D---- C:\Windows\Tasks
2015-11-05 19:37:02 ----D---- C:\Windows\system32\drivers
2015-11-05 19:00:30 ----D---- C:\Windows\System32
2015-11-05 19:00:30 ----D---- C:\Windows\inf
2015-11-05 19:00:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-05 18:39:23 ----D---- C:\Windows
2015-11-05 18:37:30 ----D---- C:\Windows\system32\config
2015-11-05 18:21:38 ----SHD---- C:\System Volume Information
2015-11-05 15:30:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-04 20:54:04 ----RD---- C:\Program Files
2015-11-04 20:48:11 ----HD---- C:\ProgramData
2015-11-04 20:48:11 ----D---- C:\Program Files\Common Files
2015-11-04 20:18:22 ----D---- C:\Windows\Microsoft.NET
2015-11-04 20:02:05 ----D---- C:\ProgramData\NVIDIA Corporation
2015-11-04 20:01:39 ----D---- C:\Windows\system32\DriverStore
2015-11-04 19:51:19 ----SD---- C:\Windows\system32\GWX
2015-11-04 19:51:19 ----D---- C:\Windows\system32\catroot2
2015-11-04 19:51:12 ----D---- C:\Windows\winsxs
2015-11-04 19:49:37 ----D---- C:\Windows\system32\CodeIntegrity
2015-11-04 19:48:57 ----D---- C:\Windows\AppCompat
2015-11-04 19:48:44 ----SD---- C:\Users\Lukáš\AppData\Roaming\Microsoft
2015-11-04 19:48:43 ----D---- C:\Users\Lukáš\AppData\Roaming\AVG2015
2015-11-04 19:48:43 ----D---- C:\Users\Lukáš\AppData\Roaming\Autodesk
2015-11-04 19:48:07 ----HD---- C:\SuperChargerProfile
2015-11-04 19:48:03 ----D---- C:\ProgramData\AVG2015
2015-11-04 19:47:55 ----D---- C:\ProgramData\Autodesk
2015-11-04 19:47:20 ----D---- C:\Program Files\Need for Speed - Rivals - Complete Edition
2015-11-04 19:47:01 ----D---- C:\Program Files\AVG
2015-11-04 19:46:59 ----D---- C:\Program Files\HappyFoto-Designer
2015-11-04 19:44:54 ----SHD---- C:\Windows\Installer
2015-11-04 19:43:17 ----D---- C:\Windows\registration
2015-11-04 19:42:16 ----D---- C:\ProgramData\MFAData
2015-11-04 19:40:58 ----D---- C:\Windows\ServiceProfiles
2015-11-04 19:40:57 ----D---- C:\Windows\PixArt
2015-11-04 19:40:57 ----D---- C:\Windows\Migration
2015-11-04 19:39:16 ----D---- C:\Users\Lukáš\AppData\Roaming\Wargaming.net
2015-11-04 19:39:15 ----D---- C:\Users\Lukáš\AppData\Roaming\Reallusion
2015-11-04 19:39:03 ----D---- C:\Users\Lukáš\AppData\Roaming\DAEMON Tools Lite
2015-11-04 19:37:41 ----D---- C:\ProgramData\Skype
2015-11-04 19:37:40 ----D---- C:\ProgramData\Package Cache
2015-11-04 19:37:20 ----D---- C:\ProgramData\AVG Web TuneUp
2015-11-04 19:37:02 ----D---- C:\ProgramData\Adobe
2015-11-04 19:37:00 ----D---- C:\Program Files\Western Digital
2015-11-04 19:36:46 ----D---- C:\Program Files\Nero
2015-11-04 19:36:36 ----D---- C:\Program Files\Microsoft Visual Studio 8
2015-11-04 19:36:36 ----D---- C:\Program Files\Microsoft Synchronization Services
2015-11-04 19:36:35 ----D---- C:\Program Files\Microsoft Sync Framework
2015-11-04 19:36:35 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2015-11-04 19:36:31 ----D---- C:\Program Files\Microsoft Office
2015-11-04 19:36:31 ----D---- C:\Program Files\Microsoft Analysis Services
2015-11-04 19:36:31 ----D---- C:\Program Files\KYE SYSTEMS CORP
2015-11-04 19:36:22 ----D---- C:\Windows\system32\Tasks
2015-11-04 19:36:20 ----D---- C:\Program Files\Euro Truck Simulator 2
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\Reallusion
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\PAC7302
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\Nero
2015-11-04 19:36:14 ----D---- C:\Program Files\Common Files\Macrovision Shared
2015-11-04 19:36:07 ----D---- C:\Program Files\Common Files\AV
2015-11-04 19:35:20 ----D---- C:\Program Files\Common Files\Adobe
2015-11-04 19:34:55 ----D---- C:\Program Files\AVG Web TuneUp
2015-11-04 19:31:25 ----RHD---- C:\MSOCache
2015-11-04 19:31:25 ----D---- C:\Program Files\Adobe
2015-11-04 19:31:17 ----D---- C:\Autodesk
2015-11-04 19:28:47 ----D---- C:\Program Files\Common Files\Autodesk Shared
2015-11-04 19:22:06 ----RSD---- C:\Windows\Fonts
2015-11-04 18:52:51 ----D---- C:\Windows\system32\wfp
2015-11-04 18:52:51 ----D---- C:\Program Files\Internet Explorer
2015-11-04 18:52:50 ----D---- C:\Program Files\DAEMON Tools Lite
2015-11-04 18:52:47 ----D---- C:\Windows\system32\wbem
2015-11-04 17:47:02 ----HD---- C:\$AVG
2015-11-04 16:59:02 ----D---- C:\Windows\Prefetch
2015-11-02 23:47:49 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\OpenCL.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvwgf2um.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvd3dum.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvapi.dll
2015-11-02 14:18:59 ----A---- C:\Windows\system32\nvsvc.dll
2015-11-02 14:18:59 ----A---- C:\Windows\system32\nvcpl.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvvsvc.exe
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvsvcr.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvshext.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvmctray.dll
2015-10-31 18:33:57 ----D---- C:\Windows\debug
2015-10-17 17:40:28 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-10-15 21:49:13 ----SD---- C:\Windows\system32\CompatTel
2015-10-15 21:49:13 ----D---- C:\Windows\system32\appraiser
2015-10-15 21:49:13 ----D---- C:\Windows\AppPatch
2015-10-15 20:13:49 ----D---- C:\Windows\rescache
2015-10-14 17:42:17 ----D---- C:\Windows\system32\cs-CZ
2015-10-14 17:42:15 ----D---- C:\Windows\system32\en-US
2015-10-14 15:10:11 ----D---- C:\Windows\system32\MRT
2015-10-14 15:06:59 ----A---- C:\Windows\system32\MRT.exe
2015-10-12 04:05:01 ----A---- C:\Windows\system32\nvspcap.dll
2015-10-12 04:05:01 ----A---- C:\Windows\system32\nvspbridge.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2015-08-19 222640]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-05-07 290272]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2015-08-04 189872]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-03-20 35808]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 16880]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-03-11 132576]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2015-10-19 252336]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-07-23 31664]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-08-04 230832]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-03-19 25104]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-07-02 2700312]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 361968]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 793072]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-10-05 23256]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-11-05 170200]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-10-05 51928]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2013-05-17 56432]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files\MSI\Super-Charger\NTIOLib.sys [2012-10-26 14392]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2015-11-02 170128]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-10-12 19744]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2015-08-11 44840]
R3 PAC7302;Eye 312; C:\Windows\system32\DRIVERS\PAC7302.SYS [2009-04-28 461824]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2013-04-10 651848]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-08-27 91016]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-08-27 181128]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2015-01-27 11520]
S1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-06-16 207328]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2015-06-11 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdAppMgrSvc;Autodesk Application Manager Service; C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [2015-09-07 1136520]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-10-12 922400]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 583680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-17 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-17 366552]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-10-05 1513784]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files\MSI\Super-Charger\ChargeService.exe [2013-02-20 161264]
R2 MSI_Trigger_Service;MSI_Trigger_Service; C:\Program Files\MSI\MSITrigger\MSI_Trigger_Service.exe [2013-05-28 29728]
R2 NeroMediaHomeService.4;Nero MediaHome 4 Service; C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe [2009-06-23 259368]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-10-12 1873696]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-10-12 4325664]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-11-02 671352]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-11-02 417584]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [2015-11-04 1205136]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-26 1032464]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [2015-10-19 3642280]
S2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [2015-10-19 335656]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-08 104912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-03-12 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2012-07-08 46528]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2015-09-18 1087792]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-03-12 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-09-16 102912]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 637912]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
-----------------EOF-----------------
Run by Lukáš at 2015-11-05 20:55:14
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 51 GB (13%) free of 400 GB
Total RAM: 3543 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:55:39, on 5.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18057)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\GWX\GWX.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Lukáš\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\notepad.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files\MSI\Super-Charger\Super-Charger.exe
C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Lukáš\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Lukáš\Desktop\RSIT.exe
C:\Program Files\trend micro\Lukáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={914E884F ... 2015-03-22 08:56:18&v=4.1.0.411&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe" -s
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [Nero MediaHome 4] "C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\Windows\PixArt\PAC7302\Monitor.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [ADSKAppManager] "C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKCU\..\Run: [Nero MediaHome 4] "C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe" /AUTORUN
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-4286238508-1785611496-305423611-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NeroMediaHomeUser.4')
O4 - HKUS\S-1-5-21-4286238508-1785611496-305423611-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NeroMediaHomeUser.4')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files\MSI\Super-Charger\ChargeService.exe
O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files\MSI\MSITrigger\MSI_Trigger_Service.exe
O23 - Service: Nero MediaHome 4 Service (NeroMediaHomeService.4) - Nero AG - C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 9848 bytes
======Scheduled tasks folder======
C:\Windows\tasks\0915tbUpdateInfo.job - C:\ProgramData\Avg_Update_0915tb\0915tb_{B1FFB811-91D9-4DE5-9B07-6AF6C91A7F0E}.exe /SETINFO /CMPID=0915tb /INFORETRY=3 /RUNBY=UP
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\0vhihc2y.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.226 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2013-06-27 6323928]
"USB3MON"=C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"RUSB3MON"=C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [2011-09-20 115048]
"Super-Charger"=C:\Program Files\MSI\Super-Charger\Super-Charger.exe [2013-03-08 506864]
"AVG_UI"=C:\Program Files\AVG\AVG2015\avgui.exe [2015-10-19 3779496]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2015-10-12 2655520]
"ShadowPlay"=C:\Windows\system32\nvspcap.dll [2015-10-12 1423304]
"Nero MediaHome 4"=C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-06-23 4891944]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2007-12-10 323584]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"ADSKAppManager"=C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [2015-09-07 523144]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-02-19 5503768]
"Nero MediaHome 4"=C:\Program Files\Nero\Nero MediaHome 4\NeroMediaHome.exe [2009-06-23 4891944]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2015-02-26 4556048]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-27 57987712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux3"=wdmaud.drv
"wave7"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux4"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave5"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2015-11-05 20:50:55 ----D---- C:\_OTM
2015-11-05 19:37:02 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-11-05 19:36:47 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-11-05 19:36:46 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-11-05 19:36:46 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-11-05 18:39:23 ----A---- C:\Windows\ntbtlog.txt
2015-11-04 20:54:04 ----D---- C:\Program Files\trend micro
2015-11-04 20:54:03 ----D---- C:\rsit
2015-11-04 20:01:41 ----A---- C:\Windows\system32\nvStreaming.exe
2015-11-04 19:59:08 ----A---- C:\Windows\system32\nvhdap32.dll
2015-11-04 19:59:07 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2015-11-04 19:59:05 ----A---- C:\Windows\system32\nvumdshim.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvopencl.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvoglv32.dll
2015-11-04 19:59:04 ----A---- C:\Windows\system32\nvoglshim32.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\nvinit.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\NvIFR.dll
2015-11-04 19:59:03 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-11-04 19:59:02 ----A---- C:\Windows\system32\NvFBC.dll
2015-11-04 19:59:02 ----A---- C:\Windows\system32\nvEncodeAPI.dll
2015-11-04 19:59:02 ----A---- C:\Windows\system32\nvdispgenco3235887.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvdispco3235887.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvcuvid.dll
2015-11-04 19:59:01 ----A---- C:\Windows\system32\nvcuda.dll
2015-11-04 19:58:57 ----A---- C:\Windows\system32\nvcompiler.dll
2015-11-04 16:56:03 ----D---- C:\ProgramData\Avg_Update_0615piz
2015-11-04 16:53:31 ----D---- C:\AdwCleaner
2015-11-04 09:53:33 ----D---- C:\ProgramData\Malwarebytes
2015-11-04 09:53:33 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2015-10-24 10:42:01 ----D---- C:\Users\Lukáš\AppData\Roaming\AVG
2015-10-24 10:36:31 ----D---- C:\ProgramData\Avg
2015-10-22 16:55:08 ----D---- C:\Program Files\Mozilla Firefox
2015-10-19 12:38:58 ----A---- C:\Windows\system32\drivers\avgidsdriverx.sys
2015-10-15 16:21:34 ----A---- C:\Windows\system32\invagent.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\generaltel.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\devinv.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-10-15 16:21:34 ----A---- C:\Windows\system32\appraiser.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\aeinv.dll
2015-10-15 16:21:34 ----A---- C:\Windows\system32\acmigration.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\urlmon.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\occache.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\msfeeds.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\jsproxy.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\jscript9diag.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieUnatt.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\iernonce.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\iedkcs32.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ieapfltr.dll
2015-10-14 15:02:12 ----A---- C:\Windows\system32\ie4uinit.exe
2015-10-14 15:02:12 ----A---- C:\Windows\system32\dxtmsft.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\wininet.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\webcheck.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\msrating.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\iesetup.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\iertutil.dll
2015-10-14 15:02:11 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\ieui.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\ieframe.dll
2015-10-14 15:02:10 ----A---- C:\Windows\system32\dxtrans.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\mshtmled.dll
2015-10-14 15:02:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-10-14 15:02:08 ----A---- C:\Windows\system32\mshtml.dll
2015-10-14 15:02:08 ----A---- C:\Windows\system32\jscript9.dll
2015-10-14 15:02:07 ----A---- C:\Windows\system32\vbscript.dll
2015-10-14 15:02:07 ----A---- C:\Windows\system32\jscript.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\ucrtbase.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 15:01:19 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 15:01:18 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\wdigest.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\TSpkg.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\sspisrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\sspicli.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\srcore.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\srclient.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\smss.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\schannel.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\secur32.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\rstrui.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\rpcrt4.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ntdll.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\ncrypt.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msv1_0.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msobjs.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\msaudite.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\lsass.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\lsasrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\kerberos.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-10-14 15:01:13 ----A---- C:\Windows\system32\csrsrv.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\cryptbase.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\credssp.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\auditpol.exe
2015-10-14 15:01:13 ----A---- C:\Windows\system32\apisetschema.dll
2015-10-14 15:01:13 ----A---- C:\Windows\system32\adtschema.dll
2015-10-14 15:01:03 ----A---- C:\Windows\system32\shell32.dll
2015-10-14 15:01:03 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-10-14 15:01:02 ----A---- C:\Windows\system32\wuaueng.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuwebv.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wups2.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wups.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wudriver.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wucltux.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuauclt.exe
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuapp.exe
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wuapi.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-10-14 15:01:01 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\drivers\appid.sys
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidsvc.dll
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 15:00:57 ----A---- C:\Windows\system32\appidapi.dll
2015-10-11 16:21:53 ----D---- C:\ProgramData\RELOADED
2015-10-11 16:14:53 ----D---- C:\Program Files\FlatOut 3
2015-10-10 16:58:11 ----A---- C:\Windows\system32\nvdispgenco3235850.dll
2015-10-10 16:58:11 ----A---- C:\Windows\system32\nvdispco3235850.dll
======List of files/folders modified in the last 1 month======
2015-11-05 20:53:26 ----D---- C:\Users\Lukáš\AppData\Roaming\Skype
2015-11-05 20:52:30 ----D---- C:\Windows\Temp
2015-11-05 20:52:02 ----D---- C:\ProgramData\NVIDIA
2015-11-05 20:50:56 ----D---- C:\Windows\Tasks
2015-11-05 19:37:02 ----D---- C:\Windows\system32\drivers
2015-11-05 19:00:30 ----D---- C:\Windows\System32
2015-11-05 19:00:30 ----D---- C:\Windows\inf
2015-11-05 19:00:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-05 18:39:23 ----D---- C:\Windows
2015-11-05 18:37:30 ----D---- C:\Windows\system32\config
2015-11-05 18:21:38 ----SHD---- C:\System Volume Information
2015-11-05 15:30:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-11-04 20:54:04 ----RD---- C:\Program Files
2015-11-04 20:48:11 ----HD---- C:\ProgramData
2015-11-04 20:48:11 ----D---- C:\Program Files\Common Files
2015-11-04 20:18:22 ----D---- C:\Windows\Microsoft.NET
2015-11-04 20:02:05 ----D---- C:\ProgramData\NVIDIA Corporation
2015-11-04 20:01:39 ----D---- C:\Windows\system32\DriverStore
2015-11-04 19:51:19 ----SD---- C:\Windows\system32\GWX
2015-11-04 19:51:19 ----D---- C:\Windows\system32\catroot2
2015-11-04 19:51:12 ----D---- C:\Windows\winsxs
2015-11-04 19:49:37 ----D---- C:\Windows\system32\CodeIntegrity
2015-11-04 19:48:57 ----D---- C:\Windows\AppCompat
2015-11-04 19:48:44 ----SD---- C:\Users\Lukáš\AppData\Roaming\Microsoft
2015-11-04 19:48:43 ----D---- C:\Users\Lukáš\AppData\Roaming\AVG2015
2015-11-04 19:48:43 ----D---- C:\Users\Lukáš\AppData\Roaming\Autodesk
2015-11-04 19:48:07 ----HD---- C:\SuperChargerProfile
2015-11-04 19:48:03 ----D---- C:\ProgramData\AVG2015
2015-11-04 19:47:55 ----D---- C:\ProgramData\Autodesk
2015-11-04 19:47:20 ----D---- C:\Program Files\Need for Speed - Rivals - Complete Edition
2015-11-04 19:47:01 ----D---- C:\Program Files\AVG
2015-11-04 19:46:59 ----D---- C:\Program Files\HappyFoto-Designer
2015-11-04 19:44:54 ----SHD---- C:\Windows\Installer
2015-11-04 19:43:17 ----D---- C:\Windows\registration
2015-11-04 19:42:16 ----D---- C:\ProgramData\MFAData
2015-11-04 19:40:58 ----D---- C:\Windows\ServiceProfiles
2015-11-04 19:40:57 ----D---- C:\Windows\PixArt
2015-11-04 19:40:57 ----D---- C:\Windows\Migration
2015-11-04 19:39:16 ----D---- C:\Users\Lukáš\AppData\Roaming\Wargaming.net
2015-11-04 19:39:15 ----D---- C:\Users\Lukáš\AppData\Roaming\Reallusion
2015-11-04 19:39:03 ----D---- C:\Users\Lukáš\AppData\Roaming\DAEMON Tools Lite
2015-11-04 19:37:41 ----D---- C:\ProgramData\Skype
2015-11-04 19:37:40 ----D---- C:\ProgramData\Package Cache
2015-11-04 19:37:20 ----D---- C:\ProgramData\AVG Web TuneUp
2015-11-04 19:37:02 ----D---- C:\ProgramData\Adobe
2015-11-04 19:37:00 ----D---- C:\Program Files\Western Digital
2015-11-04 19:36:46 ----D---- C:\Program Files\Nero
2015-11-04 19:36:36 ----D---- C:\Program Files\Microsoft Visual Studio 8
2015-11-04 19:36:36 ----D---- C:\Program Files\Microsoft Synchronization Services
2015-11-04 19:36:35 ----D---- C:\Program Files\Microsoft Sync Framework
2015-11-04 19:36:35 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2015-11-04 19:36:31 ----D---- C:\Program Files\Microsoft Office
2015-11-04 19:36:31 ----D---- C:\Program Files\Microsoft Analysis Services
2015-11-04 19:36:31 ----D---- C:\Program Files\KYE SYSTEMS CORP
2015-11-04 19:36:22 ----D---- C:\Windows\system32\Tasks
2015-11-04 19:36:20 ----D---- C:\Program Files\Euro Truck Simulator 2
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\Reallusion
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\PAC7302
2015-11-04 19:36:19 ----D---- C:\Program Files\Common Files\Nero
2015-11-04 19:36:14 ----D---- C:\Program Files\Common Files\Macrovision Shared
2015-11-04 19:36:07 ----D---- C:\Program Files\Common Files\AV
2015-11-04 19:35:20 ----D---- C:\Program Files\Common Files\Adobe
2015-11-04 19:34:55 ----D---- C:\Program Files\AVG Web TuneUp
2015-11-04 19:31:25 ----RHD---- C:\MSOCache
2015-11-04 19:31:25 ----D---- C:\Program Files\Adobe
2015-11-04 19:31:17 ----D---- C:\Autodesk
2015-11-04 19:28:47 ----D---- C:\Program Files\Common Files\Autodesk Shared
2015-11-04 19:22:06 ----RSD---- C:\Windows\Fonts
2015-11-04 18:52:51 ----D---- C:\Windows\system32\wfp
2015-11-04 18:52:51 ----D---- C:\Program Files\Internet Explorer
2015-11-04 18:52:50 ----D---- C:\Program Files\DAEMON Tools Lite
2015-11-04 18:52:47 ----D---- C:\Windows\system32\wbem
2015-11-04 17:47:02 ----HD---- C:\$AVG
2015-11-04 16:59:02 ----D---- C:\Windows\Prefetch
2015-11-02 23:47:49 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\OpenCL.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvwgf2um.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvd3dum.dll
2015-11-02 18:00:29 ----A---- C:\Windows\system32\nvapi.dll
2015-11-02 14:18:59 ----A---- C:\Windows\system32\nvsvc.dll
2015-11-02 14:18:59 ----A---- C:\Windows\system32\nvcpl.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvvsvc.exe
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvsvcr.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvshext.dll
2015-11-02 14:18:57 ----A---- C:\Windows\system32\nvmctray.dll
2015-10-31 18:33:57 ----D---- C:\Windows\debug
2015-10-17 17:40:28 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-10-15 21:49:13 ----SD---- C:\Windows\system32\CompatTel
2015-10-15 21:49:13 ----D---- C:\Windows\system32\appraiser
2015-10-15 21:49:13 ----D---- C:\Windows\AppPatch
2015-10-15 20:13:49 ----D---- C:\Windows\rescache
2015-10-14 17:42:17 ----D---- C:\Windows\system32\cs-CZ
2015-10-14 17:42:15 ----D---- C:\Windows\system32\en-US
2015-10-14 15:10:11 ----D---- C:\Windows\system32\MRT
2015-10-14 15:06:59 ----A---- C:\Windows\system32\MRT.exe
2015-10-12 04:05:01 ----A---- C:\Windows\system32\nvspcap.dll
2015-10-12 04:05:01 ----A---- C:\Windows\system32\nvspbridge.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2015-08-19 222640]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-05-07 290272]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2015-08-04 189872]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-03-20 35808]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 16880]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-03-11 132576]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2015-10-19 252336]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-07-23 31664]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-08-04 230832]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-03-19 25104]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-07-02 2700312]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 361968]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 793072]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-10-05 23256]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-11-05 170200]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-10-05 51928]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2013-05-17 56432]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files\MSI\Super-Charger\NTIOLib.sys [2012-10-26 14392]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2015-11-02 170128]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-10-12 19744]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2015-08-11 44840]
R3 PAC7302;Eye 312; C:\Windows\system32\DRIVERS\PAC7302.SYS [2009-04-28 461824]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2013-04-10 651848]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3hub.sys [2012-08-27 91016]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\DRIVERS\rusb3xhc.sys [2012-08-27 181128]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2015-01-27 11520]
S1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-06-16 207328]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2015-06-11 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdAppMgrSvc;Autodesk Application Manager Service; C:\Program Files\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [2015-09-07 1136520]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-10-12 922400]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 583680]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-17 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-17 366552]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-10-05 1513784]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files\MSI\Super-Charger\ChargeService.exe [2013-02-20 161264]
R2 MSI_Trigger_Service;MSI_Trigger_Service; C:\Program Files\MSI\MSITrigger\MSI_Trigger_Service.exe [2013-05-28 29728]
R2 NeroMediaHomeService.4;Nero MediaHome 4 Service; C:\Program Files\Nero\Nero MediaHome 4\NMMediaServerService.exe [2009-06-23 259368]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-10-12 1873696]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-10-12 4325664]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-11-02 671352]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-11-02 417584]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [2015-11-04 1205136]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-02-26 1032464]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [2015-10-19 3642280]
S2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [2015-10-19 335656]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-08 104912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-03-12 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2012-07-08 46528]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2015-09-18 1087792]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-03-12 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-09-16 102912]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 637912]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-05 147624]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139696]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Dvouklikem na soubor C:\Program Files\trend micro\Lukáš.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={914E884F ... 2015-03-22 08:56:18&v=4.1.0.411&pid=wtu&sg=&sap=hp
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
OK
díky moc za ochotu
díky moc za ochotu
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?