Za kontrolu předem dík !!
Logfile of random's system information tool 1.10 (written by random/random)
Run by Tom at 2016-09-08 19:14:21
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 164 GB (39%) free of 420 GB
Total RAM: 6088 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:14:29, on 8.9.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18427)
Boot mode: Normal
Running processes:
C:\Users\Tom\Downloads\Core Temp.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Tom\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Users\Tom\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Users\Tom\AppData\Local\Google\Chrome\User Data\SwReporter\10.66.3\software_reporter_tool.exe
C:\Program Files\trend micro\Tom.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.2.2:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [BingSvc] C:\Users\Tom\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f ... wflash.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - E:\GAMES\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11348 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
winlogon.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"
"C:\windows\system32\nvvsvc.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 31060464
\??\C:\windows\system32\conhost.exe "1743043569-1770424651958318578-1942071018410308101307191820114057104-52378703
C:\windows\System32\spoolsv.exe
taskeng.exe {0AB494DB-BEA2-49AB-BAB7-6DE61392DF47}
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
C:\windows\system32\msiexec.exe /V
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\windows\system32\wbem\unsecapp.exe -Embedding
WLIDSvcM.exe 2764
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
C:\windows\system32\svchost.exe -k bthsvcs
C:\windows\servicing\TrustedInstaller.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
"C:\windows\system32\Dwm.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide
taskeng.exe {40BC9B9E-F196-4539-9D9B-1206971BEAA9}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\windows\system32\conhost.exe "1139632004-1688570422-18399845362879813151808950301148316325816000728811456761886
"C:\Users\Tom\Downloads\Core Temp.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Users\Tom\AppData\Local\Microsoft\BingSvc\BingSvc.exe"
"C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\windows\system32\sppsvc.exe
"C:\Users\Tom\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe"
C:\windows\system32\wbem\wmiprvse.exe
taskeng.exe {B7617470-5BD7-43CC-A60D-2DCFE19DA3D1}
"C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe"
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\Lenovo\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\Lenovo\Bluetooth Software\BtStackServer.exe" -Embedding
C:\windows\system32\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"C:\Users\Tom\AppData\Local\Google\Chrome\User Data\SwReporter\10.66.3\software_reporter_tool.exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Users\Tom\Downloads\RSITx64.exe"
"C:\windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-25 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-25 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-12-11 13776088]
"IntelPAN"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2011-05-02 1935120]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-10-28 2841896]
"OnekeyStudio"=C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-05-19 789920]
"Lenovo EE Boot Optimizer"=C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [2012-05-19 206176]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2012-05-19 9753024]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2012-05-19 5908928]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-06-14 2397120]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2013-11-07 171992]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2013-11-07 399832]
"Persistence"=C:\windows\system32\igfxpers.exe [2013-11-07 442328]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-12-11 1391472]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-12-11 1391472]
"ShadowPlay"=C:\windows\system32\nvspcap64.dll [2016-06-14 1767944]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"BingSvc"=C:\Users\Tom\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-11-05 144008]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VeriFaceManager]
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [2012-05-19 329056]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-01-12 283160]
"YouCam Mirage"=C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2011-01-29 136488]
"YouCam Tray"=C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [2011-01-29 228448]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2013-11-07 442880]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux4"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux5"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux6"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux7"=wdmaud.drv
"aux8"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux9"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-09-08 19:14:20 ----D---- C:\rsit
2016-09-05 17:22:34 ----D---- C:\windows\SYSWOW64\NV
2016-09-05 17:22:34 ----D---- C:\windows\system32\NV
2016-09-05 17:22:24 ----A---- C:\windows\system32\vulkaninfo.exe
2016-09-05 17:22:23 ----A---- C:\windows\system32\vulkan-1.dll
2016-09-05 17:22:22 ----A---- C:\windows\SYSWOW64\vulkaninfo.exe
2016-09-05 17:22:21 ----A---- C:\windows\SYSWOW64\vulkan-1.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvwgf2um.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvptxJitCompiler.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvopencl.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvoglv32.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvoglshim32.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\NvIFR.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\NvFBC.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvfatbinaryLoader.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvd3dum.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvcuvid.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvcuda.dll
2016-09-05 17:19:35 ----A---- C:\windows\SYSWOW64\nvcompiler.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvwgf2umx.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvptxJitCompiler.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvopencl.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvoglv64.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvoglshim64.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\NvIFR64.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\NvFBC64.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvfatbinaryLoader.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvdispgenco6437270.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvdispco6437270.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvd3dumx.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvcuvid.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvcuda.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\nvcompiler.dll
2016-09-05 17:19:35 ----A---- C:\windows\system32\drivers\nvpciflt.sys
2016-09-05 17:19:35 ----A---- C:\windows\system32\drivers\nvlddmkm.sys
2016-08-23 14:55:17 ----A---- C:\windows\system32\nvdispgenco6437254.dll
2016-08-23 14:55:17 ----A---- C:\windows\system32\nvdispco6437254.dll
2016-08-23 14:47:32 ----A---- C:\windows\SYSWOW64\tzres.dll
2016-08-23 14:47:32 ----A---- C:\windows\system32\tzres.dll
2016-08-11 21:14:21 ----A---- C:\windows\SYSWOW64\inseng.dll
2016-08-11 21:14:21 ----A---- C:\windows\SYSWOW64\iernonce.dll
2016-08-11 21:14:21 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2016-08-11 21:14:21 ----A---- C:\windows\system32\iernonce.dll
2016-08-11 21:14:21 ----A---- C:\windows\system32\ieetwcollector.exe
2016-08-11 21:14:20 ----A---- C:\windows\SYSWOW64\occache.dll
2016-08-11 21:14:20 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2016-08-11 21:14:20 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2016-08-11 21:14:20 ----A---- C:\windows\system32\ieetwproxystub.dll
2016-08-11 21:14:19 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-08-11 21:14:19 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-08-11 21:14:19 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-08-11 21:14:19 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-08-11 21:14:19 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-08-11 21:14:19 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2016-08-11 21:14:19 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2016-08-11 21:14:19 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2016-08-11 21:14:19 ----A---- C:\windows\system32\inseng.dll
2016-08-11 21:14:19 ----A---- C:\windows\system32\ie4uinit.exe
2016-08-11 21:14:18 ----A---- C:\windows\SYSWOW64\iesetup.dll
2016-08-11 21:14:18 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-08-11 21:14:18 ----A---- C:\windows\system32\occache.dll
2016-08-11 21:14:18 ----A---- C:\windows\system32\iedkcs32.dll
2016-08-11 21:14:17 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2016-08-11 21:14:17 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2016-08-11 21:14:17 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-08-11 21:14:17 ----A---- C:\windows\SYSWOW64\ieui.dll
2016-08-11 21:14:17 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-08-11 21:14:17 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-08-11 21:14:17 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2016-08-11 21:14:17 ----A---- C:\windows\system32\urlmon.dll
2016-08-11 21:14:17 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2016-08-11 21:14:17 ----A---- C:\windows\system32\msfeeds.dll
2016-08-11 21:14:17 ----A---- C:\windows\system32\ieetwcollectorres.dll
2016-08-11 21:14:17 ----A---- C:\windows\system32\dxtrans.dll
2016-08-11 21:14:16 ----A---- C:\windows\system32\iesetup.dll
2016-08-11 21:14:16 ----A---- C:\windows\system32\iertutil.dll
2016-08-11 21:14:16 ----A---- C:\windows\system32\ieapfltr.dll
2016-08-11 21:14:15 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-08-11 21:14:15 ----A---- C:\windows\SYSWOW64\webcheck.dll
2016-08-11 21:14:15 ----A---- C:\windows\SYSWOW64\msrating.dll
2016-08-11 21:14:15 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2016-08-11 21:14:15 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-08-11 21:14:15 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2016-08-11 21:14:15 ----A---- C:\windows\system32\vbscript.dll
2016-08-11 21:14:15 ----A---- C:\windows\system32\jsproxy.dll
2016-08-11 21:14:14 ----A---- C:\windows\system32\mshtmled.dll
2016-08-11 21:14:14 ----A---- C:\windows\system32\ieui.dll
2016-08-11 21:14:14 ----A---- C:\windows\system32\ieframe.dll
2016-08-11 21:14:14 ----A---- C:\windows\system32\dxtmsft.dll
2016-08-11 21:14:13 ----A---- C:\windows\system32\webcheck.dll
2016-08-11 21:14:13 ----A---- C:\windows\system32\mshtmlmedia.dll
2016-08-11 21:14:13 ----A---- C:\windows\system32\jscript9diag.dll
2016-08-11 21:14:13 ----A---- C:\windows\system32\jscript9.dll
2016-08-11 21:14:13 ----A---- C:\windows\system32\jscript.dll
2016-08-11 21:14:13 ----A---- C:\windows\system32\ieUnatt.exe
2016-08-11 21:14:12 ----A---- C:\windows\system32\wininet.dll
2016-08-11 21:14:10 ----A---- C:\windows\system32\msrating.dll
2016-08-11 21:14:10 ----A---- C:\windows\system32\MshtmlDac.dll
2016-08-11 21:14:09 ----A---- C:\windows\system32\mshtml.dll
2016-08-11 21:13:26 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-08-11 21:13:26 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-08-11 21:13:26 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2016-08-11 21:13:26 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-08-11 21:13:26 ----A---- C:\windows\system32\schannel.dll
2016-08-11 21:13:26 ----A---- C:\windows\system32\rpcrt4.dll
2016-08-11 21:13:26 ----A---- C:\windows\system32\ncrypt.dll
2016-08-11 21:13:26 ----A---- C:\windows\system32\lsasrv.dll
2016-08-11 21:13:26 ----A---- C:\windows\system32\kerberos.dll
2016-08-11 21:13:26 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-08-11 21:13:26 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-08-11 21:13:26 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2016-08-11 21:13:26 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-08-11 21:13:26 ----A---- C:\windows\system32\certcli.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\wdigest.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\secur32.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\msobjs.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\msaudite.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\kerberos.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\credssp.dll
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\auditpol.exe
2016-08-11 21:13:25 ----A---- C:\windows\SYSWOW64\adtschema.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\wdigest.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\TSpkg.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\sspisrv.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\sspicli.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\secur32.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\rpchttp.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\msv1_0.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\msobjs.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\msaudite.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\lsass.exe
2016-08-11 21:13:25 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-08-11 21:13:25 ----A---- C:\windows\system32\cryptbase.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\credssp.dll
2016-08-11 21:13:25 ----A---- C:\windows\system32\auditpol.exe
2016-08-11 21:13:25 ----A---- C:\windows\system32\adtschema.dll
2016-08-11 21:10:11 ----A---- C:\windows\system32\win32k.sys
======List of files/folders modified in the last 1 month======
2016-09-08 19:14:29 ----D---- C:\windows\Prefetch
2016-09-08 19:14:25 ----D---- C:\Program Files\trend micro
2016-09-08 19:14:05 ----D---- C:\windows\Temp
2016-09-08 19:14:01 ----A---- C:\windows\SYSWOW64\log.txt
2016-09-08 19:09:55 ----D---- C:\windows\system32\config
2016-09-07 21:31:47 ----D---- C:\Users\Tom\AppData\Roaming\Skype
2016-09-07 20:44:40 ----SHD---- C:\windows\Installer
2016-09-07 20:44:33 ----RD---- C:\Program Files (x86)\Skype
2016-09-07 20:44:28 ----D---- C:\ProgramData\Skype
2016-09-07 19:43:00 ----SHD---- C:\System Volume Information
2016-09-07 16:40:50 ----D---- C:\Users\Tom\AppData\Roaming\vlc
2016-09-06 16:35:09 ----D---- C:\Windows
2016-09-06 16:33:49 ----D---- C:\windows\System32
2016-09-06 16:33:49 ----D---- C:\windows\inf
2016-09-06 16:33:49 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-09-06 16:29:44 ----D---- C:\windows\SysWOW64
2016-09-05 17:22:31 ----D---- C:\ProgramData\NVIDIA
2016-09-05 17:21:11 ----D---- C:\windows\system32\drivers
2016-09-05 17:20:56 ----D---- C:\windows\system32\DriverStore
2016-09-05 16:23:00 ----D---- C:\windows\Minidump
2016-08-30 19:44:37 ----D---- C:\Program Files (x86)\Adobe
2016-08-26 01:28:29 ----A---- C:\windows\SYSWOW64\nvumdshim.dll
2016-08-26 01:28:29 ----A---- C:\windows\SYSWOW64\nvinit.dll
2016-08-26 01:28:29 ----A---- C:\windows\SYSWOW64\nvapi.dll
2016-08-26 01:28:29 ----A---- C:\windows\system32\nvumdshimx.dll
2016-08-26 01:28:29 ----A---- C:\windows\system32\nvinitx.dll
2016-08-26 01:28:29 ----A---- C:\windows\system32\nvapi64.dll
2016-08-25 23:10:08 ----A---- C:\windows\system32\nvsvc64.dll
2016-08-25 23:10:08 ----A---- C:\windows\system32\nvcpl.dll
2016-08-25 23:10:06 ----A---- C:\windows\SYSWOW64\oemdspif.dll
2016-08-25 23:10:06 ----A---- C:\windows\system32\nvvsvc.exe
2016-08-25 23:10:06 ----A---- C:\windows\system32\nvsvcr.dll
2016-08-25 23:10:05 ----A---- C:\windows\system32\nvshext.dll
2016-08-25 23:10:05 ----A---- C:\windows\system32\nvmctray.dll
2016-08-25 23:10:05 ----A---- C:\windows\system32\nv3dappshextr.dll
2016-08-25 23:10:05 ----A---- C:\windows\system32\nv3dappshext.dll
2016-08-25 19:34:32 ----D---- C:\windows\rescache
2016-08-23 14:50:11 ----D---- C:\windows\winsxs
2016-08-23 14:49:32 ----D---- C:\windows\SYSWOW64\cs-CZ
2016-08-23 14:49:27 ----D---- C:\windows\system32\cs-CZ
2016-08-13 11:03:57 ----D---- C:\Users\Tom\AppData\Roaming\Audacity
2016-08-13 10:56:32 ----D---- C:\Users\Tom\AppData\Roaming\OBS
2016-08-11 21:46:30 ----D---- C:\windows\SYSWOW64\en-US
2016-08-11 21:46:30 ----D---- C:\Program Files\Internet Explorer
2016-08-11 21:46:29 ----D---- C:\windows\system32\en-US
2016-08-11 21:46:28 ----D---- C:\Program Files (x86)\Internet Explorer
2016-08-11 21:25:50 ----D---- C:\windows\system32\MRT
2016-08-11 21:16:25 ----D---- C:\windows\debug
2016-08-11 21:16:12 ----AC---- C:\windows\system32\MRT.exe
2016-08-11 21:12:06 ----D---- C:\windows\system32\catroot2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 fbfmon;fbfmon; C:\windows\system32\drivers\fbfmon.sys [2012-05-19 57952]
R0 fltsrv;Acronis Storage Filter Management; C:\windows\system32\DRIVERS\fltsrv.sys [2012-08-30 132704]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-01-12 439320]
R0 LHDmgr;LHDmgr; C:\windows\System32\DRIVERS\LhdX64.sys [2012-05-19 39008]
R0 nvpciflt;nvpciflt; C:\windows\system32\DRIVERS\nvpciflt.sys [2016-08-26 39992]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 BPntDrv;BPntDrv; C:\windows\system32\drivers\BPntDrv.sys [2012-05-19 13408]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2016-04-14 264552]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2016-04-14 186784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R1 winioex;winioex; C:\windows\system32\drivers\winioex.sys [2012-05-19 15456]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2016-04-14 170792]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver; C:\windows\system32\DRIVERS\AcpiVpc.sys [2012-05-19 29792]
R3 ALSysIO;ALSysIO; \??\C:\Users\Tom\AppData\Local\Temp\ALSysIO64.sys []
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-09-29 80384]
R3 BTWAMPFL;btwampfl; C:\windows\system32\DRIVERS\btwampfl.sys [2011-05-13 437288]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2011-05-13 150568]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2011-05-13 164392]
R3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2011-05-13 89640]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2011-05-13 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2011-05-13 21544]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\windows\system32\DRIVERS\clwvd.sys [2011-01-29 31088]
R3 DelayMan;ACPI DelayMan Filter Service; C:\windows\system32\DRIVERS\delayman.sys [2012-05-19 20064]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2013-11-07 5363200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2014-12-11 4351960]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2010-12-13 174168]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\k57nd60a.sys [2011-05-09 425000]
R3 LgBttPort;LGE Bluetooth TransPort; C:\windows\system32\DRIVERS\lgbtpt64.sys [2009-09-29 16384]
R3 lgbusenum;LG Bluetooth Bus Enumerator; C:\windows\system32\DRIVERS\lgbtbs64.sys [2009-09-29 14848]
R3 LGVMODEM;LGE Virtual Modem; C:\windows\system32\DRIVERS\lgvmdm64.sys [2009-09-29 17408]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2011-05-01 8593920]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-06-14 26560]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\windows\system32\drivers\nvvad64v.sys [2016-04-14 56384]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SPUVCbv;SPUVCb Driver Service; C:\windows\System32\Drivers\usbvideo.sys [2013-07-12 185344]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-10-28 398896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 wdkmd;Intel WiDi KMD; C:\windows\system32\DRIVERS\WDKMD.sys [2010-12-01 42392]
S3 AF15BDA;AF9015 BDA Device; C:\windows\system32\DRIVERS\AF15BDA.sys [2014-05-19 507392]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\windows\system32\DRIVERS\lgandnetdiag64.sys [2013-04-18 29184]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\windows\system32\DRIVERS\CtClsFlt.sys []
S3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
S3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\windows\system32\DRIVERS\wdcsam64.sys [2015-04-30 23200]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 btwdins;Bluetooth Service; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [2011-05-12 970016]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2016-03-03 2520928]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-05-02 1517328]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-06-14 1163712]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-12 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-06-14 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-06-14 2521024]
R2 nvsvc;NVIDIA Display Driver Service; C:\windows\system32\nvvsvc.exe [2016-08-25 1362368]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2014-11-18 75136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-05-02 844560]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-12-11 292568]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-06-14 3632576]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2016-04-05 1860616]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2013-11-07 279000]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-01-06 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2016-08-02 114688]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-05-02 340240]
S3 Origin Client Service;Origin Client Service; E:\GAMES\Origin\OriginClientService.exe [2016-04-20 2119688]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-08-23 1465120]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2012-08-29 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Stahnete crystal disk info 
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) 
Přispějete na provoz fóra?