Ahoj prosím o preventivní kontrolu. PC funguje jak má, ale má problémy např. s přehrávaním videí na youtube. Nevím zda je chyba na serveru youtubu nebo mám v PC nebo v celé sítí nějakou havěť, nic jsem poslední dobou neinstaloval. Přikládám log. Díky.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Rodina at 2015-09-20 13:31:42
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 94 GB (41%) free of 229 GB
Total RAM: 6135 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:31:43, on 20.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18015)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Programy\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Rodina.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yahoo.com/?fr=avantsearch6
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O2 - BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: PDFXChange 2012 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - C:\Program Files\PDFXchange 2012\PDF-XChange 5\PXCIEaddin5.dll
O2 - BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
O2 - BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: PDFXChange 2012 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - C:\Program Files\PDFXchange 2012\PDF-XChange 5\PXCIEaddin5.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\StartLiveUpdate.exe /REMINDER
O4 - HKLM\..\Run: [MSStp] C:\Windows\inf\msstp.vbe
O4 - HKLM\..\Run: [mnckfnthySrv] C:\Windows\system32\mnckfnthy.vbe
O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\Programy\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [vmware-tray.exe] "D:\VMware\vmware-tray.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Bonus.SSR.FR12] "C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe" /autorun
O4 - HKLM\..\Run: [adm_tray.exe] C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AnyDVD] "C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Programy\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [AshSnap] C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Přidat do součásti Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ie_banner_deny.htm
O9 - Extra button: Virtuální klávesnice - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Program Files (x86)\Translat_V14\WebIE.dll
O9 - Extra button: Kontrola adres URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: Služba Kaspersky Anti-Virus (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Programy\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mezzmo - Conceiva Pty. Ltd. - C:\Program Files (x86)\Conceiva\Mezzmo\MezzmoMediaServer.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_LiveUpdate_Service - Micro-Star International - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: Nalpeiron Control Service (NalServ) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nalserv.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Programy\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - Unknown owner - D:\VMware\vmware-authd.exe (file missing)
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe
O23 - Service: VMware Workstation Server (VMwareHostd) - Unknown owner - D:\VMware\vmware-hostd.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WUAUCLT - Unknown owner - C:\Users\Rodina\AppData\Roaming\nssm.exe
--
End of file - 16992 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\Sandboxie\SbieSvc.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\AEADISRV.EXE
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe" -r
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Conceiva\Mezzmo\MezzmoMediaServer.exe" /ServerName="Mezzmo"
"C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe"
C:\Windows\SysWOW64\nalserv.exe
C:\Windows\SysWOW64\nlssrv32.exe
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
"C:\Program Files (x86)\Programy\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\SysWOW64\vmnat.exe
C:\Users\Rodina\AppData\Roaming\nssm.exe
C:\Windows\SysWOW64\vmnetdhcp.exe
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
\??\C:\Windows\system32\conhost.exe "-294807976-3223813971522479543-562043309-103639924913295622-13198978981689819793
"C:\Users\Rodina\AppData\Roaming\SMSvcHost.exe" -a X11 -o stratum+tcp://x11.ltcrabbit.com:3332 -u Jimbo.worker -p 0 -t 2
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" a5c8c0df-eda7-4e18-af2e-a9eb608ee6ba
\??\C:\Windows\system32\conhost.exe "-460381216-242722424-1711887628-4739341552126205928-176242289420397690537618639
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe" -hidden /prefetch:1
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-84552398918843407441364567885159535197816615120611810159615-135525831671197684
C:\Windows\Explorer.EXE
taskeng.exe {62D00525-A11B-450B-B3BF-5DB55F95F8B3}
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe" /tray
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe"
"C:\Program Files\Sandboxie\SbieCtrl.exe"
"C:\Program Files (x86)\Programy\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
"C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe"
"C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
taskeng.exe {A0F8BA17-B288-48AB-8176-E71104B0146D}
"C:\Users\Rodina\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Rodina\AppData\Roaming\Mozilla\Firefox\Profiles\mmjxuwg0.default-1441991849889
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\PDFXchange 2012\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\PDFXchange 2012\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.6.2]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.CZE
nppdf32.dll
C:\Users\Rodina\AppData\Roaming\Mozilla\Firefox\Profiles\mmjxuwg0.default-1441991849889\extensions\
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
C:\Users\Rodina\AppData\Roaming\Mozilla\Firefox\Profiles\mmjxuwg0.default-1441991849889\searchplugins\
startpage-https.xml
startpage-ssl.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-23 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-06-21 800448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-17 1535784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-06-21 550080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-12-02 163720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2014-01-23 2333400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-21 996544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-12-02 163720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Program Files (x86)\Translat_V14\WebIE.dll [2015-01-20 643072]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-01-21 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A}]
PDFXChange 2012 - C:\Program Files\PDFXchange 2012\PDF-XChange 5\PXCIEaddin5.dll [2013-01-19 423488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-06-21 655040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{73455575-E40C-433C-9784-C78DC7761455}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-17 1265448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-17 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9E6D0D23-3D72-4A94-AE1F-2D167624E3D9}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-06-21 455360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-12-03 141192]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2014-01-21 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2014-01-21 1728216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-17 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
URL Advisor Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-06-21 798912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-12-03 141192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-12-02 163720]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{42DFA04F-0F16-418e-B80C-AB97A5AFAD3A} - PDFXChange 2012 - C:\Program Files\PDFXchange 2012\PDF-XChange 5\PXCIEaddin5.dll [2013-01-19 423488]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-12-03 141192]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Program Files (x86)\Translat_V14\WebIE.dll [2015-01-20 643072]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-08-27 2634872]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-08-27 1710568]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2010-06-14 190536]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2014-04-15 10396440]
"SoundMAX"=C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe [2009-05-18 3866624]
"Acronis Scheduler2 Service"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2014-05-30 383528]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27 558496]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2014-05-30 383528]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AnyDVD"=C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [2014-04-16 93096]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"AlcoholAutomount"=C:\Program Files (x86)\Programy\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
"AshSnap"=C:\Program Files (x86)\Ashampoo\Ashampoo Snap 7\ashsnap.exe []
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [2014-12-19 458456]
"Nektra OEAPI"= []
"OEXPRESS"= []
"SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2015-02-18 785416]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-07-17 8418584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rodina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Serviio.lnk]
C:\PROGRA~1\Serviio\bin\SERVII~2.EXE []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Live Update"=C:\Program Files (x86)\MSI\Live Update\StartLiveUpdate.exe /REMINDER []
"MSStp"=C:\Windows\inf\msstp.vbe [2014-03-05 1584]
"mnckfnthySrv"=C:\Windows\system32\mnckfnthy.vbe []
"HTC Sync Loader"=C:\Program Files (x86)\Programy\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2013-05-13 659456]
"SoundMAXPnP"=C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2014-07-03 1310720]
"vmware-tray.exe"=D:\VMware\vmware-tray.exe []
""= []
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2015-06-29 3498728]
"Bonus.SSR.FR12"=C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [2014-05-11 1472312]
"adm_tray.exe"=C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe [2010-06-04 530768]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe"="C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe"="C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe:*:Enabled:Logitech Harmony Remote Software 7"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.RTV1"=rtvcvfw64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-09-20 13:27:05 ----D---- C:\rsit
2015-09-20 13:27:05 ----D---- C:\Program Files\trend micro
2015-09-19 23:03:48 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-09-19 23:02:29 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvopencl.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvoglv64.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvinitx.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\NvIFR64.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\NvFBC64.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvdispgenco6435582.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvdispco6435582.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvcuvid.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvcuda.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\nvcompiler.dll
2015-09-19 23:02:29 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-09-19 23:00:10 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-09-19 23:00:09 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-09-17 17:51:59 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-09-17 17:51:50 ----D---- C:\Program Files (x86)\Java
2015-09-16 21:56:33 ----D---- C:\Program Files\WinDjView
2015-09-14 17:20:48 ----D---- C:\Users\Rodina\AppData\Roaming\Sun
2015-09-09 09:29:24 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-09-09 09:29:24 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-09-09 09:29:24 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-09-09 09:29:24 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-09-09 09:29:24 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-09-09 09:29:24 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-09-09 09:29:23 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-09-09 09:29:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 09:29:23 ----A---- C:\Windows\system32\iernonce.dll
2015-09-09 09:29:23 ----A---- C:\Windows\system32\iedkcs32.dll
2015-09-09 09:29:23 ----A---- C:\Windows\system32\ie4uinit.exe
2015-09-09 09:29:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-09-09 09:29:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-09-09 09:29:22 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-09-09 09:29:22 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-09-09 09:29:22 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-09-09 09:29:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-09-09 09:29:22 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-09-09 09:29:22 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-09-09 09:29:22 ----A---- C:\Windows\system32\urlmon.dll
2015-09-09 09:29:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-09 09:29:22 ----A---- C:\Windows\system32\msfeeds.dll
2015-09-09 09:29:22 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-09-09 09:29:22 ----A---- C:\Windows\system32\dxtrans.dll
2015-09-09 09:29:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-09-09 09:29:21 ----A---- C:\Windows\system32\iesetup.dll
2015-09-09 09:29:21 ----A---- C:\Windows\system32\iertutil.dll
2015-09-09 09:29:21 ----A---- C:\Windows\system32\ieapfltr.dll
2015-09-09 09:29:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-09-09 09:29:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-09-09 09:29:20 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-09-09 09:29:20 ----A---- C:\Windows\system32\vbscript.dll
2015-09-09 09:29:20 ----A---- C:\Windows\system32\jsproxy.dll
2015-09-09 09:29:20 ----A---- C:\Windows\system32\ieUnatt.exe
2015-09-09 09:29:20 ----A---- C:\Windows\system32\ieui.dll
2015-09-09 09:29:20 ----A---- C:\Windows\system32\ieframe.dll
2015-09-09 09:29:20 ----A---- C:\Windows\system32\dxtmsft.dll
2015-09-09 09:29:19 ----A---- C:\Windows\system32\wininet.dll
2015-09-09 09:29:19 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-09-09 09:29:19 ----A---- C:\Windows\system32\mshtmled.dll
2015-09-09 09:29:19 ----A---- C:\Windows\system32\jscript9diag.dll
2015-09-09 09:29:19 ----A---- C:\Windows\system32\jscript9.dll
2015-09-09 09:29:19 ----A---- C:\Windows\system32\jscript.dll
2015-09-09 09:29:18 ----A---- C:\Windows\system32\msrating.dll
2015-09-09 09:29:18 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-09-09 09:29:18 ----A---- C:\Windows\system32\mshtml.dll
2015-09-09 09:29:12 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-09-09 09:29:12 ----A---- C:\Windows\system32\schedsvc.dll
2015-09-09 09:29:12 ----A---- C:\Windows\system32\jnwmon.dll
2015-09-09 09:29:12 ----A---- C:\Windows\system32\InkEd.dll
2015-09-09 09:28:56 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-09-09 09:28:56 ----A---- C:\Windows\system32\tzres.dll
2015-09-09 09:28:55 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-09-09 09:28:55 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-09-09 09:28:55 ----A---- C:\Windows\system32\dwmcore.dll
2015-09-09 09:28:55 ----A---- C:\Windows\system32\dwmapi.dll
2015-09-09 09:28:38 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-09-09 09:28:38 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-09-09 09:28:38 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-09-09 09:28:38 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-09-09 09:28:38 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-09-09 09:28:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-09-09 09:28:38 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\wow64.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\winsrv.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\UtcResources.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\tdh.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\srcore.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\rstrui.exe
2015-09-09 09:28:38 ----A---- C:\Windows\system32\rpcrt4.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-09-09 09:28:38 ----A---- C:\Windows\system32\ntdll.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\lsasrv.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\KernelBase.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\kernel32.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\kerberos.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\diagtrack.dll
2015-09-09 09:28:38 ----A---- C:\Windows\system32\advapi32.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 09:28:37 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\user.exe
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-09-09 09:28:37 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\wow64win.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\wow64cpu.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\wdigest.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\TSpkg.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\sspisrv.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\sspicli.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\srclient.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\smss.exe
2015-09-09 09:28:37 ----A---- C:\Windows\system32\schannel.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\secur32.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\ntvdm64.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\ncrypt.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\msv1_0.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\msobjs.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\msaudite.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\lsass.exe
2015-09-09 09:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-09-09 09:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-09-09 09:28:37 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-09-09 09:28:37 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-09-09 09:28:37 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-09-09 09:28:37 ----A---- C:\Windows\system32\csrsrv.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\cryptbase.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\credssp.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\conhost.exe
2015-09-09 09:28:37 ----A---- C:\Windows\system32\auditpol.exe
2015-09-09 09:28:37 ----A---- C:\Windows\system32\apisetschema.dll
2015-09-09 09:28:37 ----A---- C:\Windows\system32\adtschema.dll
2015-09-09 09:28:26 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-09-09 09:28:26 ----A---- C:\Windows\system32\consent.exe
2015-09-09 09:28:26 ----A---- C:\Windows\system32\authui.dll
2015-09-09 09:28:26 ----A---- C:\Windows\system32\appinfo.dll
2015-09-09 09:28:25 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-09-09 09:28:25 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-09-09 09:28:25 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-09-09 09:28:25 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-09-09 09:28:25 ----A---- C:\Windows\system32\msxml6r.dll
2015-09-09 09:28:25 ----A---- C:\Windows\system32\msxml6.dll
2015-09-09 09:28:25 ----A---- C:\Windows\system32\msxml3r.dll
2015-09-09 09:28:25 ----A---- C:\Windows\system32\msxml3.dll
2015-09-09 09:28:23 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-09-09 09:28:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-09-09 09:28:23 ----A---- C:\Windows\system32\drivers\appid.sys
2015-09-09 09:28:23 ----A---- C:\Windows\system32\appidsvc.dll
2015-09-09 09:28:23 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-09-09 09:28:23 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-09-09 09:28:23 ----A---- C:\Windows\system32\appidapi.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-09-09 09:28:21 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wuwebv.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wups2.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wups.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wudriver.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wucltux.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wuaueng.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wuauclt.exe
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wuapp.exe
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wuapi.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\win32k.sys
2015-09-09 09:28:21 ----A---- C:\Windows\system32\lpk.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\fontsub.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\dciman32.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\atmlib.dll
2015-09-09 09:28:21 ----A---- C:\Windows\system32\atmfd.dll
2015-08-30 13:03:48 ----D---- C:\Program Files\VideoLAN
2015-08-30 08:09:46 ----D---- C:\Users\Rodina\AppData\Roaming\.ACEStream
======List of files/folders modified in the last 1 month======
2015-09-20 13:31:43 ----D---- C:\Windows\Temp
2015-09-20 13:27:05 ----RD---- C:\Program Files
2015-09-20 12:30:02 ----D---- C:\ProgramData\Kaspersky Lab
2015-09-20 11:06:30 ----D---- C:\Windows\system32\config
2015-09-20 10:31:36 ----AD---- C:\Windows
2015-09-20 10:31:36 ----A---- C:\Windows\Sandboxie.ini
2015-09-20 10:19:05 ----D---- C:\Windows\System32
2015-09-20 10:19:05 ----D---- C:\Windows\inf
2015-09-20 10:19:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-20 10:12:52 ----D---- C:\ProgramData\VMware
2015-09-20 10:12:51 ----SHD---- C:\System Volume Information
2015-09-20 10:12:51 ----A---- C:\Windows\MezzmoMediaServer.INI
2015-09-20 10:12:50 ----D---- C:\ProgramData\NVIDIA
2015-09-20 06:01:39 ----D---- C:\Windows\SysWOW64
2015-09-19 23:04:09 ----D---- C:\temp
2015-09-19 23:04:09 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-19 23:03:53 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-09-19 23:03:47 ----D---- C:\Windows\system32\DriverStore
2015-09-19 23:03:20 ----D---- C:\Windows\system32\drivers
2015-09-19 18:20:32 ----D---- C:\Windows\debug
2015-09-17 18:44:06 ----D---- C:\Windows\system32\Tasks
2015-09-17 18:44:06 ----D---- C:\Program Files (x86)\Opera
2015-09-17 17:59:37 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-09-17 17:53:10 ----D---- C:\ProgramData\Oracle
2015-09-17 17:52:09 ----SHD---- C:\Windows\Installer
2015-09-17 17:52:08 ----D---- C:\Program Files (x86)\Common Files
2015-09-17 17:51:50 ----RD---- C:\Program Files (x86)
2015-09-17 17:48:58 ----HD---- C:\ProgramData
2015-09-17 14:29:15 ----D---- C:\Users\Rodina\AppData\Roaming\foobar2000
2015-09-15 23:26:16 ----D---- C:\Windows\Tasks
2015-09-11 23:16:18 ----D---- C:\Users\Rodina\AppData\Roaming\Skype
2015-09-10 12:28:54 ----D---- C:\Windows\rescache
2015-09-10 11:22:39 ----D---- C:\Windows\Microsoft.NET
2015-09-10 11:20:50 ----RSD---- C:\Windows\assembly
2015-09-10 08:05:30 ----D---- C:\Windows\winsxs
2015-09-10 08:04:25 ----D---- C:\Windows\SYSWOW64\en-US
2015-09-10 08:04:25 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-09-10 08:04:25 ----D---- C:\Windows\system32\en-US
2015-09-10 08:04:25 ----D---- C:\Windows\system32\cs-CZ
2015-09-10 08:04:25 ----D---- C:\Windows\PolicyDefinitions
2015-09-10 08:04:25 ----D---- C:\Windows\ehome
2015-09-10 08:04:25 ----D---- C:\Program Files\Windows Journal
2015-09-10 08:04:25 ----D---- C:\Program Files\Internet Explorer
2015-09-10 08:04:24 ----D---- C:\Windows\AppPatch
2015-09-10 08:04:24 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-10 08:04:23 ----D---- C:\Windows\system32\Boot
2015-09-10 01:36:43 ----D---- C:\Windows\system32\MRT
2015-09-09 23:08:50 ----D---- C:\ProgramData\Skype
2015-09-09 23:08:48 ----RD---- C:\Program Files (x86)\Skype
2015-09-09 09:28:17 ----D---- C:\Windows\system32\catroot2
2015-08-30 12:27:34 ----D---- C:\Users\Rodina\AppData\Roaming\Kodi
2015-08-28 06:35:01 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-27 02:37:01 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-08-27 02:37:01 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-08-27 02:36:47 ----A---- C:\Windows\system32\nvspcap64.dll
2015-08-27 02:36:47 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-08-26 18:37:02 ----A---- C:\Windows\system32\MRT.exe
2015-08-25 20:46:21 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-08-25 20:46:21 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-08-25 20:46:21 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-08-25 20:46:21 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-08-25 20:46:21 ----A---- C:\Windows\system32\OpenCL.dll
2015-08-25 20:46:21 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-08-25 20:46:21 ----A---- C:\Windows\system32\nvapi64.dll
2015-08-25 16:24:20 ----A---- C:\Windows\system32\nvvsvc.exe
2015-08-25 16:24:20 ----A---- C:\Windows\system32\nvsvcr.dll
2015-08-25 16:24:20 ----A---- C:\Windows\system32\nvsvc64.dll
2015-08-25 16:24:20 ----A---- C:\Windows\system32\nvshext.dll
2015-08-25 16:24:20 ----A---- C:\Windows\system32\nvmctray.dll
2015-08-25 16:24:19 ----A---- C:\Windows\system32\nvcpl.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 fltsrv;Acronis Storage Filter Management; C:\Windows\system32\DRIVERS\fltsrv.sys [2014-08-05 118560]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2014-06-21 458336]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2014-08-05 276256]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2014-07-31 386680]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys [2014-11-17 85584]
R0 vsock;vSockets Driver; C:\Windows\system32\drivers\vsock.sys [2014-11-17 76480]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-08-04 13440]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2013-03-04 40344]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2014-06-21 625248]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2013-10-20 29792]
R1 klpd;klpd; C:\Windows\system32\DRIVERS\klpd.sys [2013-04-12 15456]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2013-05-14 55904]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2014-06-21 178272]
R2 Ext2Fsd;Ext2 File System; \??\C:\Windows\system32\Drivers\Ext2Fsd.sys [2014-08-26 771224]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2014-11-18 55488]
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2014-11-20 48832]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2014-11-20 26816]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys [2014-11-20 66752]
R2 vstor2-mntapi20-shared;Vstor2 MntApi 2.0 Driver (shared); C:\Windows\SysWOW64\drivers\vstor2-mntapi20-shared.sys [2013-08-28 33872]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2014-07-03 475136]
R3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2014-02-15 138664]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2014-06-21 29280]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2013-10-20 29280]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-08-07 204648]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-08-27 19576]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-08-11 50472]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2015-02-18 237064]
R3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2014-11-20 28864]
S1 hwinterface;hwinterface; C:\Windows\System32\Drivers\hwinterface.sys []
S3 andnetadb;ADB Interface DriverNet; C:\Windows\System32\Drivers\lgandnetadb.sys [2014-05-27 31744]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2014-07-07 29184]
S3 AndNetDiag2;LGE AndroidNet For Diagnostics Port; C:\Windows\system32\DRIVERS\lgandnetdiag264.sys [2014-06-26 29696]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2014-07-07 36352]
S3 ATICDSDr;ATICDSDr; \??\C:\Users\Rodina\AppData\Local\Temp\ATICDSDr.sys []
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2012-12-07 36928]
S3 jrvad_service;JRiver Media Center 20 (service); C:\Windows\system32\drivers\JRiverWDMDriver.sys [2015-01-23 36872]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2015-06-11 20992]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2013-08-22 40664]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 vmusb;VMware USB Client Driver; C:\Windows\system32\DRIVERS\vmusb.sys [2014-11-18 46144]
S4 klflt;klflt; C:\Windows\system32\DRIVERS\klflt.sys [2014-06-21 115296]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2014-05-30 942664]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2014-07-03 111616]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-12-28 96896]
R2 AVP;Služba Kaspersky Anti-Virus; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [2013-10-20 214512]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-08-27 1155192]
R2 Mezzmo;Mezzmo; C:\Program Files (x86)\Conceiva\Mezzmo\MezzmoMediaServer.exe [2014-07-02 5344552]
R2 MSI_LiveUpdate_Service;MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2014-03-27 83952]
R2 NalServ;Nalpeiron Control Service; C:\Windows\SysWOW64\nalserv.exe [2013-09-06 146032]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\nlssrv32.exe [2013-09-06 70768]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-08-27 1872504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-08-27 5544568]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-08-25 937776]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2015-02-18 175112]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Programy\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-08-25 410744]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\syswow64\vmnetdhcp.exe [2014-11-20 359104]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2014-11-18 912576]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\syswow64\vmnat.exe [2014-11-20 438464]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Programy\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S2 VMAuthdService;VMware Authorization Service; D:\VMware\vmware-authd.exe []
S2 VMwareHostd;VMware Workstation Server; D:\VMware\vmware-hostd.exe -u C:\ProgramData\VMware\hostd\config.xml []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-17 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-08-15 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-01-23 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivní kontrola
Zdravim 
Mate tam havet
Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Mate tam havet
Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
Márty84 píše:Zdravim
Mate tam havet
Omlouvám se za pozdní reakci, tak mi to našlo dva trojany přímo v systému a Bitcoinera, takže asi přeinstaluju celý systém + když ty Bitcoinery vymažu bude od nich pokoj nebo musím použít nějaký jiný nástroj?
Re: Preventivní kontrola
Vetsina haveti format neprezije, ale nektere ano. Bohuzel kdyz nevidim co presne a kde nasel, nemuzu to posoudit.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
Márty84 píše:Vetsina haveti format neprezije, ale nektere ano. Bohuzel kdyz nevidim co presne a kde nasel, nemuzu to posoudit.
Malwarebytes Anti-Malware
http://www.malwarebytes.org
Datum skenování: 20.9.2015
Čas skenování: 16:29
Protokol: malwarebytes log.txt
Správce: Ano
Verze: 2.1.8.1057
Databáze malwaru: v2015.09.20.02
Databáze rootkitů: v2015.09.18.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Rodina
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1507261
Uplynulý čas: 4 hod, 36 min, 0 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Sken hloubkových rootkitů: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 2
Trojan.Agent.Gen, C:\Users\Rodina\AppData\Roaming\SMSvcHost.exe, 2868, , [55cd939fe3a86ec83058db8736cdd22e]
Trojan.Agent.Gen, C:\Users\Rodina\AppData\Roaming\nssm.exe, 2592, , [f23089a9d4b70c2a24706f03c63e22de]
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 1
Trojan.Agent.Gen, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUCLT, , [f23089a9d4b70c2a24706f03c63e22de],
Hodnoty registru: 1
Trojan.Agent.SCR, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|MSStp, C:\Windows\inf\msstp.vbe, , [60c25bd79fecd561f1ea6ed9b3501de3]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 2
PUP.Optional.OpenCandy, C:\Users\Rodina\AppData\Roaming\OpenCandy, , [c260052d9dee9b9b97d0a951cd3550b0],
PUP.Optional.OpenCandy, C:\Users\Rodina\AppData\Roaming\OpenCandy\1B6D7722E1BD41459BA9F2AC6058CC5A, , [c260052d9dee9b9b97d0a951cd3550b0],
Soubory: 8
PUP.Optional.OpenCandy, C:\Users\Rodina\Desktop\ImgBurn 2.5.8.0\SetupImgBurn_2.5.8.0.exe, , [a57d41f14942fa3c86d12c6ceb1a14ec],
PUP.Optional.BitCoinMiner, C:\Windows\SysWOW64\acumnckfnthy.exe, , [140ee94991fa1b1be00eadeb29d9c040],
Trojan.BitCoinMiner, C:\Windows\SysWOW64\dcgmnckfnthy.exe, , [988a66ccfe8d34025dcf7128877b3dc3],
PUP.BitCoinMiner, C:\Windows\SysWOW64\lcpmnckfnthy.exe, , [ca58260c4c3f8fa7799632b38b7537c9],
Trojan.Agent.SCR, C:\Windows\inf\msstp.vbe, , [60c25bd79fecd561f1ea6ed9b3501de3],
Trojan.Agent.Gen, C:\Users\Rodina\AppData\Roaming\SMSvcHost.exe, , [55cd939fe3a86ec83058db8736cdd22e],
Trojan.Agent.Gen, C:\Users\Rodina\AppData\Roaming\nssm.exe, , [f23089a9d4b70c2a24706f03c63e22de],
PUP.Optional.OpenCandy, C:\Users\Rodina\AppData\Roaming\OpenCandy\1B6D7722E1BD41459BA9F2AC6058CC5A\AVG-PC-TuneUp2014-cz-CZ-p4v1.exe, , [c260052d9dee9b9b97d0a951cd3550b0],
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Už to vypadalo, že je to v pohodě po vymazání přes ten malwarebytes, ale dneska ráno mi nenajel seznam a na centrumu sem měl problémy s načtením obrázku celkově to bylo zpomalené, google atd. fungoval bez problému. Nikdy jsem se s takovými problémy nesetkal. Zkoušel jsem i různé webové prohlížeče. Dokonce ten sám problém měl i notebook, takže vážně nevím, zda je chyba někde u mě v síti nebo u nich.
Re: Preventivní kontrola
No a budete tedy preinstalovavat, nebo to chcete cistit?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Preventivní kontrola
Asi bude jednodušší přeinstalace než čištění že?
Re: Preventivní kontrola
Nevim jestli jednodussi, ale pro vas asi rychlejsi Zalezi na vas. Az se rozmyslite, dejte vedet.
7.11. pro neaktivitu
http://forum.viry.cz/viewtopic.php?f=12&t=123975
Zalezi na vas. Az se rozmyslite, dejte vedet.7.11. pro neaktivitu
http://forum.viry.cz/viewtopic.php?f=12&t=123975Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?