Zdravím, dnes je po zapnutí celý počítač zpomalený, restart nepomohl. Připravuji si systém na upgrade na Win10, takže jsem teď zálohovala na externí disk svoje soubory a mazala programy, které nepoužívám.
Přikládám log z RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Dana at 2015-08-12 12:17:22
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 73 GB (15%) free of 477 GB
Total RAM: 4095 MB (21% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:17:33, on 12.8.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17910)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe
C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Dana.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - Global Startup: OnTranslator.lnk = C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
O8 - Extra context menu item: Copy to Semagic - C:\Program Files (x86)\Semagic\copy.htm
O8 - Extra context menu item: Semagic - C:\Program Files (x86)\Semagic\link.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com.tw/common/asusTek_sys_ctrl.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSIEChrome - (no CLSID) - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Apache2.4 - Apache Software Foundation - C:\xampp\apache\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - C:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C:\xampp\service.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
--
End of file - 11588 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\xampp\apache\bin\httpd.exe" -k runservice
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
C:\xampp\mysql\bin\mysqld.exe --defaults-file=C:\xampp\mysql\bin\my.ini mysql
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PSIService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9222bd9e-d09b-4682-8069-9bab272a6cff
WLIDSvcM.exe 3232
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
\??\C:\Windows\system32\conhost.exe "-230454906287960747-16722350992000883566-280297206-124357977-19510546941946050420
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
"taskhost.exe"
\??\C:\Windows\system32\conhost.exe "-575833964-1405930864-19432997441109241300905784904-89807067217532767551950781403
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-87c9ceae-ba0f-4972-83b7-ccf2a58bb358 -SystemEventPortName:HostProcess-d61f5a86-c51c-4b06-bfc2-b7d7b9dd13c6 -IoCancelEventPortName:HostProcess-1551f265-ec97-4f4c-8852-7bb9a9bc79b1 -NonStateChangingEventPortName:HostProcess-1aac0fde-cab8-43df-a447-e4f60f2d128c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0a711690-416b-4293-82e5-20d7f2556f4e -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\GWX\GWX.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe"
"C:/Users/Dana/AppData/Local/Akamai/netsession_win.exe" --client
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe" /h
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4580.0.2050138345\1201600403" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44,53 --gpu-vendor-id=0x10de --gpu-device-id=0x05e2 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4174 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-GB --force-fieldtrials="*AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4580 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4580.25.495097140\1804747831" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-GB --force-fieldtrials="*AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4580 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4580.33.382740829\1333903727" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-GB --force-fieldtrials="*AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4580 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4580.38.300904329\1755470569" /prefetch:673131151
"C:\Program Files (x86)\Mozilla Firefox\crashreporter.exe" "C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana\minidumps\692ce177-a2b2-442b-88b9-fbf2b5b006d7.dmp"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=en-GB --force-fieldtrials="*AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group8 pct:10h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_23/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4580 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4580.52.494737076\157908906" /prefetch:673131151
"taskhost.exe"
"C:\Program Files (x86)\Windows Live\Mail\wlmail.exe"
"C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe" -Embedding
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00001078
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\Dana\Desktop\index.html"
C:\Windows\system32\AUDIODG.EXE 0xa24
"C:\Users\Dana\Documents\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe18_ Global\UsGthrCtrlFltPipeMssGthrPipe18 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001Core.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana\extensions\
abs@avira.com
seoanalysistool@seoworkers
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 551520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 212576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-29 53288576]
"Akamai NetSession Interface"=C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe [2014-10-30 4673432]
"Dropbox Update"=C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-01 134512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-01-20 43848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Dana\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI]
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe /server []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Monitor Apache Servers.lnk]
C:\PROGRA~2\APACHE~1\Apache2.2\bin\APACHE~1.EXE [2012-01-28 41051]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~3\Office12\ONENOTEM.EXE [2009-02-26 97680]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
OnTranslator.lnk - C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.l3codecp"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit -
.js - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
.txt - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
======List of files/folders created in the last 1 month======
2015-08-12 10:40:37 ----D---- C:\Users\Dana\AppData\Roaming\InstallShield
2015-08-11 10:32:32 ----HD---- C:\$Windows.~WS
2015-08-10 17:32:09 ----D---- C:\Program Files (x86)\Magical Jelly Bean
2015-08-08 10:33:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-30 15:45:38 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvoglv64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvIFR64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvFBC64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispgenco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuda.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-07-30 15:36:42 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-07-30 15:36:40 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-07-30 15:36:40 ----A---- C:\Windows\system32\nvcompiler.dll
2015-07-30 15:22:14 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-07-30 15:22:13 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-07-28 09:53:35 ----A---- C:\Windows\system32\generaltel.dll
2015-07-28 09:53:35 ----A---- C:\Windows\system32\devinv.dll
2015-07-28 09:53:35 ----A---- C:\Windows\system32\appraiser.dll
2015-07-28 09:53:34 ----A---- C:\Windows\system32\invagent.dll
2015-07-28 09:53:34 ----A---- C:\Windows\system32\aeinv.dll
2015-07-28 09:53:34 ----A---- C:\Windows\system32\acmigration.dll
2015-07-28 09:53:33 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-07-28 09:53:33 ----A---- C:\Windows\system32\aepdu.dll
2015-07-21 17:34:44 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\lpk.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\atmfd.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\atmlib.dll
2015-07-15 16:42:51 ----D---- C:\Program Files (x86)\QuickTime
2015-07-15 16:37:43 ----A---- C:\Windows\SYSWOW64\RENBADE.tmp
2015-07-15 09:56:24 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-07-15 09:56:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-07-15 09:56:22 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-07-15 09:56:22 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-07-15 09:56:21 ----A---- C:\Windows\system32\urlmon.dll
2015-07-15 09:56:21 ----A---- C:\Windows\system32\ieui.dll
2015-07-15 09:56:20 ----A---- C:\Windows\system32\mshtml.dll
2015-07-15 09:56:20 ----A---- C:\Windows\system32\ieframe.dll
2015-07-15 09:56:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-07-15 09:56:18 ----A---- C:\Windows\system32\iertutil.dll
2015-07-15 09:56:15 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-07-15 09:56:15 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-07-15 09:56:15 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-07-15 09:56:15 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-07-15 09:56:14 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-07-15 09:56:14 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-07-15 09:56:14 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-07-15 09:56:14 ----A---- C:\Windows\system32\iernonce.dll
2015-07-15 09:56:14 ----A---- C:\Windows\system32\ie4uinit.exe
2015-07-15 09:56:13 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-07-15 09:56:13 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-07-15 09:56:13 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-07-15 09:56:13 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-07-15 09:56:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-15 09:56:11 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-07-15 09:56:11 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-07-15 09:56:11 ----A---- C:\Windows\system32\iedkcs32.dll
2015-07-15 09:56:10 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-07-15 09:56:10 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-07-15 09:56:10 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-07-15 09:56:10 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-07-15 09:56:10 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-15 09:56:10 ----A---- C:\Windows\system32\msfeeds.dll
2015-07-15 09:56:10 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-07-15 09:56:10 ----A---- C:\Windows\system32\dxtrans.dll
2015-07-15 09:56:09 ----A---- C:\Windows\system32\iesetup.dll
2015-07-15 09:56:09 ----A---- C:\Windows\system32\ieapfltr.dll
2015-07-15 09:56:07 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-07-15 09:56:07 ----A---- C:\Windows\system32\vbscript.dll
2015-07-15 09:56:06 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-07-15 09:56:06 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-07-15 09:56:06 ----A---- C:\Windows\system32\jsproxy.dll
2015-07-15 09:56:06 ----A---- C:\Windows\system32\ieUnatt.exe
2015-07-15 09:56:06 ----A---- C:\Windows\system32\dxtmsft.dll
2015-07-15 09:56:05 ----A---- C:\Windows\system32\mshtmled.dll
2015-07-15 09:56:04 ----A---- C:\Windows\system32\wininet.dll
2015-07-15 09:56:04 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-07-15 09:56:04 ----A---- C:\Windows\system32\jscript.dll
2015-07-15 09:56:03 ----A---- C:\Windows\system32\msrating.dll
2015-07-15 09:56:03 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-07-15 09:55:50 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-15 09:55:50 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-15 09:55:48 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-07-15 09:55:48 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-07-15 09:55:48 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-07-15 09:55:48 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-07-15 09:55:48 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wuwebv.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wups2.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wups.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wudriver.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wucltux.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wuaueng.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wuauclt.exe
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wuapp.exe
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wuapi.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-07-15 09:55:48 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\rdpcorets.dll
2015-07-15 09:55:29 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 09:55:28 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 09:55:28 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 09:55:27 ----A---- C:\Windows\system32\jscript9diag.dll
2015-07-15 09:55:27 ----A---- C:\Windows\system32\jscript9.dll
2015-07-15 09:55:26 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-07-15 09:55:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-07-15 09:45:49 ----A---- C:\Windows\system32\wksprt.exe
2015-07-15 09:45:49 ----A---- C:\Windows\system32\mstscax.dll
2015-07-15 09:45:47 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-07-15 09:45:46 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-07-15 09:45:46 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-07-15 09:45:46 ----A---- C:\Windows\system32\tsgqec.dll
2015-07-15 09:45:46 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-07-15 09:45:44 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\crypt32.dll
2015-07-15 09:45:23 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-07-15 09:45:23 ----A---- C:\Windows\system32\rpcrt4.dll
2015-07-15 09:45:23 ----A---- C:\Windows\system32\msv1_0.dll
2015-07-15 09:45:23 ----A---- C:\Windows\system32\kerberos.dll
2015-07-15 09:45:23 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-07-15 09:45:22 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\wdigest.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\TSpkg.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\sspisrv.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\sspicli.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\schannel.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\secur32.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\ncrypt.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\lsass.exe
2015-07-15 09:45:22 ----A---- C:\Windows\system32\lsasrv.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-07-15 09:45:22 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-07-15 09:45:22 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-07-15 09:45:22 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-07-15 09:45:22 ----A---- C:\Windows\system32\cryptbase.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\credssp.dll
2015-07-15 09:45:22 ----A---- C:\Windows\system32\auditpol.exe
2015-07-15 09:45:22 ----A---- C:\Windows\system32\adtschema.dll
2015-07-15 09:45:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-07-15 09:45:21 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-07-15 09:45:21 ----A---- C:\Windows\system32\msobjs.dll
2015-07-15 09:45:21 ----A---- C:\Windows\system32\msaudite.dll
2015-07-15 09:45:00 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\consent.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2015-08-12 12:17:31 ----D---- C:\Windows\temp
2015-08-12 12:17:28 ----D---- C:\Program Files\trend micro
2015-08-12 12:12:34 ----D---- C:\Windows\system32\catroot2
2015-08-12 12:12:23 ----D---- C:\Windows\winsxs
2015-08-12 12:08:41 ----D---- C:\Program Files (x86)\Zaklínač - Rozšířená edice
2015-08-12 11:39:54 ----D---- C:\Windows\SysWOW64
2015-08-12 11:38:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-12 11:23:46 ----SHD---- C:\Windows\Installer
2015-08-12 11:23:46 ----HD---- C:\Config.Msi
2015-08-12 11:23:46 ----D---- C:\Windows
2015-08-12 11:23:45 ----D---- C:\ProgramData
2015-08-12 11:23:45 ----D---- C:\Program Files (x86)\LogMeIn
2015-08-12 11:20:15 ----SHD---- C:\System Volume Information
2015-08-12 11:15:46 ----RD---- C:\Program Files (x86)
2015-08-12 10:44:55 ----D---- C:\Program Files\Inkscape-0.48
2015-08-12 10:20:12 ----D---- C:\Windows\system32\config
2015-08-12 10:17:05 ----D---- C:\Users\Dana\AppData\Roaming\OnTranslator
2015-08-12 10:11:30 ----D---- C:\ProgramData\NVIDIA
2015-08-12 09:53:51 ----D---- C:\Users\Dana\AppData\Roaming\Skype
2015-08-12 09:48:11 ----D---- C:\Windows\Prefetch
2015-08-12 00:03:10 ----D---- C:\Users\Dana\AppData\Roaming\AIMP3
2015-08-11 17:24:05 ----D---- C:\Windows\Internet Logs
2015-08-11 12:18:15 ----D---- C:\Program Files (x86)\Steam
2015-08-11 11:59:42 ----D---- C:\Users\Dana\AppData\Roaming\OBS
2015-08-11 11:29:05 ----D---- C:\Windows\system32\Tasks
2015-08-11 10:46:27 ----D---- C:\catdbapi
2015-08-11 10:33:46 ----D---- C:\Windows\Panther
2015-08-10 17:35:39 ----HD---- C:\$Windows.~BT
2015-08-10 10:55:30 ----D---- C:\Users\Dana\AppData\Roaming\FileZilla
2015-08-10 00:36:20 ----D---- C:\Users\Dana\AppData\Roaming\KeePass
2015-08-09 09:16:46 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-08 19:12:55 ----RSD---- C:\Windows\assembly
2015-08-06 19:55:23 ----D---- C:\ProgramData\Freemake
2015-08-06 19:55:20 ----D---- C:\Program Files (x86)\Freemake
2015-08-06 19:55:15 ----D---- C:\Program Files (x86)\Common Files
2015-08-06 19:48:33 ----D---- C:\Program Files (x86)\Opera
2015-08-06 18:35:23 ----DC---- C:\Windows\system32\DRVSTORE
2015-08-06 18:32:09 ----RD---- C:\Program Files
2015-08-06 18:19:14 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-08-06 17:57:35 ----D---- C:\Program Files\dm
2015-08-06 17:28:55 ----D---- C:\ProgramData\Corel
2015-08-06 17:28:45 ----RSD---- C:\Windows\Fonts
2015-08-06 17:22:32 ----D---- C:\Program Files (x86)\EA GAMES
2015-08-06 17:21:47 ----D---- C:\Program Files\Common Files\Bullzip
2015-08-06 17:21:46 ----D---- C:\Windows\System32
2015-08-06 17:20:54 ----D---- C:\Program Files\Blender Foundation
2015-08-06 17:18:15 ----D---- C:\Users\Dana\AppData\Roaming\vlc
2015-08-06 17:16:53 ----D---- C:\Program Files\TeamSpeak 3 Client
2015-08-06 17:14:12 ----D---- C:\Program Files (x86)\Corel
2015-08-06 17:13:45 ----D---- C:\AdvancedTshirts
2015-08-06 17:09:48 ----D---- C:\Windows\inf
2015-08-06 17:09:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-06 17:07:10 ----D---- C:\Users\Dana\AppData\Roaming\Dropbox
2015-08-06 11:03:15 ----D---- C:\de-zaloha
2015-08-02 18:52:58 ----D---- C:\Program Files\OBS
2015-08-02 12:04:51 ----D---- C:\Program Files (x86)\AIMP3
2015-07-31 23:44:58 ----D---- C:\Users\Dana\AppData\Roaming\Apple Computer
2015-07-31 23:30:27 ----D---- C:\Windows\system32\drivers
2015-07-31 17:23:20 ----D---- C:\ProgramData\Package Cache
2015-07-30 15:46:20 ----D---- C:\Temp
2015-07-30 15:45:36 ----D---- C:\Windows\system32\DriverStore
2015-07-30 15:39:24 ----D---- C:\Program Files\NVIDIA Corporation
2015-07-30 15:23:41 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 09:50:19 ----D---- C:\Program Files (x86)\OnTranslator.com
2015-07-29 00:23:15 ----SD---- C:\Windows\system32\CompatTel
2015-07-28 18:12:53 ----D---- C:\Program Files (x86)\yWriter5
2015-07-28 09:54:04 ----D---- C:\Windows\Logs
2015-07-28 09:46:39 ----D---- C:\Windows\SoftwareDistribution
2015-07-25 09:13:21 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-16 00:22:19 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-16 00:22:19 ----D---- C:\Windows\SYSWOW64\en-US
2015-07-16 00:22:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-07-16 00:22:19 ----D---- C:\Windows\system32\en-US
2015-07-16 00:22:19 ----D---- C:\Windows\system32\cs-CZ
2015-07-16 00:22:19 ----D---- C:\Windows\PolicyDefinitions
2015-07-16 00:22:17 ----D---- C:\Program Files (x86)\Internet Explorer
2015-07-16 00:22:16 ----D---- C:\Program Files\Internet Explorer
2015-07-16 00:22:05 ----D---- C:\Windows\system32\wbem
2015-07-16 00:22:05 ----D---- C:\Windows\system32\appraiser
2015-07-16 00:22:05 ----D---- C:\Windows\AppPatch
2015-07-15 17:09:43 ----D---- C:\ProgramData\Microsoft Help
2015-07-15 16:58:10 ----D---- C:\Windows\system32\MRT
2015-07-15 16:37:58 ----D---- C:\Program Files (x86)\Java
2015-07-15 16:37:17 ----D---- C:\Program Files\Java
2015-07-15 16:35:02 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-15 11:58:59 ----D---- C:\Program Files (x86)\FileZilla FTP Client
2015-07-14 10:27:39 ----D---- C:\Users\Dana\AppData\Roaming\Notepad++
2015-07-14 10:27:39 ----D---- C:\Program Files (x86)\Notepad++
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-07-25 141416]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-07-02 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2015-03-02 922168]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2015-03-02 128592]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2010-11-20 59392]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2010-11-20 360832]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2014-04-24 450968]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-07-25 162528]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-03-10 44088]
R2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys []
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2011-09-16 72216]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2011-09-16 11552]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 141440]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2015-03-02 156360]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2010-11-20 194944]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2010-11-20 95232]
S0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2013-04-18 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2013-06-28 36352]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv.sys [2013-11-27 42016]
S3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2013-12-06 35232]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-12-13 36720]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2011-11-04 117040]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-01-27 14464]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2015-07-25 461672]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2015-07-25 461672]
R2 Apache2.4;Apache2.4; C:\xampp\apache\bin\httpd.exe [2013-02-23 22016]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-01-07 43336]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2015-07-02 218816]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [2015-07-16 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2015-03-28 89840]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-12-13 194416]
R2 mysql;mysql; C:\xampp\mysql\bin\mysqld.exe [2013-05-16 8151040]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-29 932040]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-07-15 76888]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-29 410952]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-04-25 3592120]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2015-07-25 887128]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2015-07-25 1213072]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2015-03-14 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe [2014-12-15 56648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-06-20 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-01-20 641352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-05-18 1931632]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-29 1255736]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2009-07-14 81920]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalený počítač
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
ninja_girl
- Návštěvník
- Příspěvky: 106
- Registrován: 20 črc 2005 17:31
- Bydliště: Brno
-
Rudy
- Site Admin
- Příspěvky: 118311
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Zdravím!
Upgrade bych si na vašem místě ještě rozmyslel, dokud MS nevydá nějaké opravy. Koukněte se po fóru, co je tu případů s problémy po upgradu. Spusťte tuto utilitu:
Upgrade bych si na vašem místě ještě rozmyslel, dokud MS nevydá nějaké opravy. Koukněte se po fóru, co je tu případů s problémy po upgradu. Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
ninja_girl
- Návštěvník
- Příspěvky: 106
- Registrován: 20 črc 2005 17:31
- Bydliště: Brno
Re: Zpomalený počítač
Zdravím Rudy,
přes noc mi to nainstalovalo 23 nových updatů ve windows, snad to nevadí.
Jinak co se týče W10, je mi to docela jedno, nemám problém dočasně přejít zpět na 7 nebo Linux. Po upgradu budu montovat W10 na nový disk. Ale zpět k věci, tady je log 
Vypadá, že to jede svižněji, akorát teda Firefox je hrůza. Nevím jestli je to tím, že mám připnuté taby (5), ale startuje to hrozně pomalu, ještě zkusím zakázat všechny doplňky a dám vědět.
# AdwCleaner v4.208 - Log vytvořen 13/08/2015 v 09:31:08
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-08-12.1 [Server]
# Operační system : Windows 7 Professional Service Pack 1 (x64)
# Uživatelské jméno : Dana - HOME
# Spuštěno z : C:\Users\Dana\Desktop\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : mcaudrv_simple
[#] Služba Smazáno : ManyCam
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\SuperEasy Software
Složka Smazáno : C:\Users\Dana\Documents\Updater
Složka Smazáno : C:\Users\Dana\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp
Soubor Smazáno : C:\Windows\System32\drivers\mcaudrv_x64.sys
Soubor Smazáno : C:\Windows\System32\drivers\mcvidrv.sys
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Klíč Smazáno : HKCU\Software\SuperEasy Software
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17937
-\\ Mozilla Firefox v39.0.3 (x86 cs)
-\\ Google Chrome v43.0.2357.130
*************************
AdwCleaner[R5].txt - [1935 bytů] - [18/09/2014 19:39:16]
AdwCleaner[R6].txt - [2867 bytů] - [12/02/2015 18:55:35]
AdwCleaner[R7].txt - [1738 bytů] - [13/08/2015 09:24:22]
AdwCleaner[R8].txt - [1796 bytů] - [13/08/2015 09:29:25]
AdwCleaner[S5].txt - [2020 bytů] - [18/09/2014 19:43:19]
AdwCleaner[S6].txt - [2751 bytů] - [12/02/2015 18:59:24]
AdwCleaner[S7].txt - [1663 bytů] - [13/08/2015 09:31:08]
########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [1721 bytů] ##########
přes noc mi to nainstalovalo 23 nových updatů ve windows, snad to nevadí.
Jinak co se týče W10, je mi to docela jedno, nemám problém dočasně přejít zpět na 7 nebo Linux. Po upgradu budu montovat W10 na nový disk. Ale zpět k věci, tady je log Vypadá, že to jede svižněji, akorát teda Firefox je hrůza. Nevím jestli je to tím, že mám připnuté taby (5), ale startuje to hrozně pomalu, ještě zkusím zakázat všechny doplňky a dám vědět.
# AdwCleaner v4.208 - Log vytvořen 13/08/2015 v 09:31:08
# Aktualizováno 09/07/2015 by Xplode
# Databáze : 2015-08-12.1 [Server]
# Operační system : Windows 7 Professional Service Pack 1 (x64)
# Uživatelské jméno : Dana - HOME
# Spuštěno z : C:\Users\Dana\Desktop\adwcleaner_4.208.exe
# Nastavení : Čištění
***** [ Služby ] *****
[#] Služba Smazáno : mcaudrv_simple
[#] Služba Smazáno : ManyCam
***** [ Soubory / Složky ] *****
Složka Smazáno : C:\ProgramData\SuperEasy Software
Složka Smazáno : C:\Users\Dana\Documents\Updater
Složka Smazáno : C:\Users\Dana\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp
Soubor Smazáno : C:\Windows\System32\drivers\mcaudrv_x64.sys
Soubor Smazáno : C:\Windows\System32\drivers\mcvidrv.sys
***** [ Naplánované úlohy ] *****
***** [ Zástupci ] *****
***** [ Registry ] *****
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Klíč Smazáno : HKCU\Software\SuperEasy Software
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
***** [ Prohlížeče ] *****
-\\ Internet Explorer v11.0.9600.17937
-\\ Mozilla Firefox v39.0.3 (x86 cs)
-\\ Google Chrome v43.0.2357.130
*************************
AdwCleaner[R5].txt - [1935 bytů] - [18/09/2014 19:39:16]
AdwCleaner[R6].txt - [2867 bytů] - [12/02/2015 18:55:35]
AdwCleaner[R7].txt - [1738 bytů] - [13/08/2015 09:24:22]
AdwCleaner[R8].txt - [1796 bytů] - [13/08/2015 09:29:25]
AdwCleaner[S5].txt - [2020 bytů] - [18/09/2014 19:43:19]
AdwCleaner[S6].txt - [2751 bytů] - [12/02/2015 18:59:24]
AdwCleaner[S7].txt - [1663 bytů] - [13/08/2015 09:31:08]
########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [1721 bytů] ##########
-
ninja_girl
- Návštěvník
- Příspěvky: 106
- Registrován: 20 črc 2005 17:31
- Bydliště: Brno
Re: Zpomalený počítač
A posílám rovnou i nový scan z RSIT.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Dana at 2015-08-13 11:26:25
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 62 GB (13%) free of 477 GB
Total RAM: 4095 MB (35% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:26:26, on 13.8.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Notepad++\notepad++.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
C:\Program Files\trend micro\Dana.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - Global Startup: OnTranslator.lnk = C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
O8 - Extra context menu item: Copy to Semagic - C:\Program Files (x86)\Semagic\copy.htm
O8 - Extra context menu item: Semagic - C:\Program Files (x86)\Semagic\link.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com.tw/common/asusTek_sys_ctrl.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSIEChrome - (no CLSID) - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Apache2.4 - Apache Software Foundation - C:\xampp\apache\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - C:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C:\xampp\service.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
--
End of file - 11405 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\xampp\apache\bin\httpd.exe" -k runservice
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe"
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
C:\xampp\mysql\bin\mysqld.exe --defaults-file=C:\xampp\mysql\bin\my.ini mysql
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PSIService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
WLIDSvcM.exe 3220
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9222bd9e-d09b-4682-8069-9bab272a6cff
\??\C:\Windows\system32\conhost.exe "-196398733511415588451050296951-160479665453309488-983617823145136969-2135700591
"taskhost.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "633773251-9287282941715478063-216327410-14163398031793712065-1669050487-1224695681
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-65bb6618-f4e3-4077-9112-ef7827de7534 -SystemEventPortName:HostProcess-132f18d8-677c-42e1-bbc5-e51d09df0d96 -IoCancelEventPortName:HostProcess-cc1b27c5-2d7a-4740-a745-5f271c504e3f -NonStateChangingEventPortName:HostProcess-831ed768-606c-4c0e-8228-9888cfeadf1c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:abcc2d87-6fec-464f-9013-3e28ad778388 -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\GWX\GWX.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe"
"C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe" /h
"C:/Users/Dana/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files (x86)\Notepad++\notepad++.exe" "C:\AdwCleaner\AdwCleaner[S7].txt"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\AUDIODG.EXE 0xd0
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00001698
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="6904.0.815384493\644148744" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 6904 "\\.\pipe\gecko-crash-server-pipe.6904" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe" --proxy-stub-channel=Flash2844.557BEFA8.25782 --host-broker-channel=Flash2844.557BEFA8.31672 --host-pid=2844 --host-npapi-version=28 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe" --channel=5496.0039F7EC.1683103128 --proxy-stub-channel=Flash2844.557BEFA8.25782 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll" --host-npapi-version=28 --type=renderer
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Dana\Documents\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001Core.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana\extensions\
abs@avira.com
seoanalysistool@seoworkers
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 551520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 212576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-29 53288576]
"Akamai NetSession Interface"=C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe [2014-10-30 4673432]
"Dropbox Update"=C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-01 134512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-01-20 43848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Dana\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI]
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe /server []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Monitor Apache Servers.lnk]
C:\PROGRA~2\APACHE~1\Apache2.2\bin\APACHE~1.EXE [2012-01-28 41051]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~3\Office12\ONENOTEM.EXE [2009-02-26 97680]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
OnTranslator.lnk - C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.l3codecp"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit -
.js - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
.txt - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
======List of files/folders created in the last 1 month======
2015-08-12 17:04:13 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 17:04:13 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 12:14:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-12 12:14:06 ----A---- C:\Windows\system32\ntdll.dll
2015-08-12 12:14:05 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-08-12 12:14:05 ----A---- C:\Windows\system32\kernel32.dll
2015-08-12 12:14:04 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-12 12:14:04 ----A---- C:\Windows\system32\sysmain.dll
2015-08-12 12:14:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-08-12 12:14:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\wow64.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\rstrui.exe
2015-08-12 12:14:03 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\KernelBase.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\winsrv.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\wdigest.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\srcore.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\smss.exe
2015-08-12 12:14:02 ----A---- C:\Windows\system32\schannel.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\rpcrt4.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\ncrypt.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\msv1_0.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\kerberos.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-12 12:14:02 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\conhost.exe
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-08-12 12:14:01 ----A---- C:\Windows\system32\wow64win.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\TSpkg.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\sspisrv.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\sspicli.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\srclient.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\secur32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\lsass.exe
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\cryptbase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\credssp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\auditpol.exe
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\system32\apisetschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\system32\adtschema.dll
2015-08-12 12:13:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-08-12 12:13:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-12 12:13:59 ----A---- C:\Windows\system32\msobjs.dll
2015-08-12 12:13:59 ----A---- C:\Windows\system32\msaudite.dll
2015-08-12 12:13:49 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\system32\davclnt.dll
2015-08-12 12:11:39 ----A---- C:\Windows\system32\basesrv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\invagent.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\generaltel.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\devinv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\appraiser.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\aeinv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\acmigration.dll
2015-08-12 12:11:05 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-12 12:11:05 ----A---- C:\Windows\system32\aepdu.dll
2015-08-12 12:09:24 ----A---- C:\Windows\system32\mstscax.dll
2015-08-12 12:09:23 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-08-12 12:09:23 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-12 12:09:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-12 12:09:22 ----A---- C:\Windows\system32\wksprt.exe
2015-08-12 12:09:22 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-12 12:09:22 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\iertutil.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\iernonce.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-12 12:09:17 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-12 12:09:17 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-12 12:09:16 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-12 12:09:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-12 12:09:16 ----A---- C:\Windows\system32\urlmon.dll
2015-08-12 12:09:16 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-12 12:09:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-12 12:09:14 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-12 12:09:14 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-12 12:09:14 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-12 12:09:13 ----A---- C:\Windows\system32\iesetup.dll
2015-08-12 12:09:13 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-12 12:09:11 ----A---- C:\Windows\system32\vbscript.dll
2015-08-12 12:09:11 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-12 12:09:10 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-12 12:09:10 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-12 12:09:10 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-12 12:09:10 ----A---- C:\Windows\system32\ieui.dll
2015-08-12 12:09:10 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\ieframe.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\wininet.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript9.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript.dll
2015-08-12 12:09:07 ----A---- C:\Windows\system32\msrating.dll
2015-08-12 12:09:07 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-12 12:09:06 ----A---- C:\Windows\system32\mshtml.dll
2015-08-12 12:09:00 ----A---- C:\Windows\system32\msxml6.dll
2015-08-12 12:09:00 ----A---- C:\Windows\system32\msxml3.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-12 12:08:59 ----A---- C:\Windows\system32\msxml6r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\system32\msxml3r.dll
2015-08-12 12:02:12 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-12 12:02:12 ----A---- C:\Windows\system32\notepad.exe
2015-08-12 12:02:12 ----A---- C:\Windows\notepad.exe
2015-08-12 12:02:09 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wudriver.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wucltux.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuapi.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-12 12:02:07 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-12 12:02:07 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wups2.dll
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wups.dll
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wuapp.exe
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-12 11:04:31 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-08-12 10:40:37 ----D---- C:\Users\Dana\AppData\Roaming\InstallShield
2015-08-11 10:32:32 ----HD---- C:\$Windows.~WS
2015-08-10 17:32:09 ----D---- C:\Program Files (x86)\Magical Jelly Bean
2015-08-08 10:33:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-30 15:45:38 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvoglv64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvIFR64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvFBC64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispgenco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuda.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-07-30 15:36:42 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-07-30 15:36:40 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-07-30 15:36:40 ----A---- C:\Windows\system32\nvcompiler.dll
2015-07-30 15:22:14 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-07-30 15:22:13 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-07-21 17:34:44 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\lpk.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\atmfd.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\atmlib.dll
2015-07-15 16:42:51 ----D---- C:\Program Files (x86)\QuickTime
2015-07-15 16:37:43 ----A---- C:\Windows\SYSWOW64\RENBADE.tmp
2015-07-15 09:55:50 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-15 09:55:50 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\rdpcorets.dll
2015-07-15 09:55:29 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 09:55:28 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 09:55:28 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\crypt32.dll
2015-07-15 09:45:00 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\consent.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2015-08-13 11:26:26 ----D---- C:\Program Files\trend micro
2015-08-13 11:26:25 ----D---- C:\Windows\temp
2015-08-13 11:08:32 ----D---- C:\Users\Dana\AppData\Roaming\Skype
2015-08-13 09:43:13 ----D---- C:\Windows\system32\config
2015-08-13 09:38:48 ----D---- C:\Users\Dana\AppData\Roaming\OnTranslator
2015-08-13 09:33:13 ----D---- C:\ProgramData\NVIDIA
2015-08-13 09:31:28 ----D---- C:\AdwCleaner
2015-08-13 09:31:23 ----D---- C:\Windows\system32\drivers
2015-08-13 09:31:21 ----D---- C:\ProgramData
2015-08-13 09:19:11 ----SHD---- C:\Windows\Installer
2015-08-13 09:19:11 ----HD---- C:\Config.Msi
2015-08-13 00:13:04 ----D---- C:\Windows\Microsoft.NET
2015-08-13 00:12:13 ----RSD---- C:\Windows\assembly
2015-08-12 19:58:54 ----D---- C:\Windows\winsxs
2015-08-12 19:55:31 ----D---- C:\Windows\Internet Logs
2015-08-12 19:51:57 ----SD---- C:\Windows\system32\CompatTel
2015-08-12 19:51:56 ----D---- C:\Windows\SysWOW64
2015-08-12 19:51:56 ----D---- C:\Windows\system32\appraiser
2015-08-12 19:51:56 ----D---- C:\Windows\System32
2015-08-12 19:51:56 ----D---- C:\Windows\AppPatch
2015-08-12 19:51:53 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-08-12 19:51:53 ----D---- C:\Windows\system32\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\system32\drivers\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-12 19:51:53 ----D---- C:\Windows\system32\cs-CZ
2015-08-12 19:51:45 ----D---- C:\Program Files\Internet Explorer
2015-08-12 19:51:41 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-12 19:51:37 ----D---- C:\Windows
2015-08-12 17:05:16 ----D---- C:\ProgramData\Microsoft Help
2015-08-12 17:02:25 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-12 17:02:25 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 16:53:00 ----D---- C:\Windows\system32\MRT
2015-08-12 16:39:49 ----A---- C:\Windows\system32\MRT.exe
2015-08-12 16:38:39 ----SHD---- C:\System Volume Information
2015-08-12 16:37:00 ----D---- C:\Users\Dana\AppData\Roaming\AIMP3
2015-08-12 12:12:34 ----D---- C:\Windows\system32\catroot2
2015-08-12 12:08:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-12 12:08:41 ----D---- C:\Program Files (x86)\Zaklínač - Rozšířená edice
2015-08-12 11:38:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-12 11:23:45 ----D---- C:\Program Files (x86)\LogMeIn
2015-08-12 11:15:46 ----RD---- C:\Program Files (x86)
2015-08-12 10:44:55 ----D---- C:\Program Files\Inkscape-0.48
2015-08-12 09:48:11 ----D---- C:\Windows\Prefetch
2015-08-11 12:18:15 ----D---- C:\Program Files (x86)\Steam
2015-08-11 11:59:42 ----D---- C:\Users\Dana\AppData\Roaming\OBS
2015-08-11 11:29:05 ----D---- C:\Windows\system32\Tasks
2015-08-11 10:46:27 ----D---- C:\catdbapi
2015-08-11 10:33:53 ----D---- C:\Windows\Panther
2015-08-10 17:35:39 ----HD---- C:\$Windows.~BT
2015-08-10 10:55:30 ----D---- C:\Users\Dana\AppData\Roaming\FileZilla
2015-08-10 00:36:20 ----D---- C:\Users\Dana\AppData\Roaming\KeePass
2015-08-09 09:16:46 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-06 19:55:23 ----D---- C:\ProgramData\Freemake
2015-08-06 19:55:20 ----D---- C:\Program Files (x86)\Freemake
2015-08-06 19:55:15 ----D---- C:\Program Files (x86)\Common Files
2015-08-06 19:48:33 ----D---- C:\Program Files (x86)\Opera
2015-08-06 19:48:29 ----D---- C:\Users\Dana\AppData\Roaming\Opera Software
2015-08-06 18:35:23 ----DC---- C:\Windows\system32\DRVSTORE
2015-08-06 18:32:09 ----RD---- C:\Program Files
2015-08-06 18:19:14 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-08-06 17:57:35 ----D---- C:\Program Files\dm
2015-08-06 17:28:55 ----D---- C:\ProgramData\Corel
2015-08-06 17:28:45 ----RSD---- C:\Windows\Fonts
2015-08-06 17:22:32 ----D---- C:\Program Files (x86)\EA GAMES
2015-08-06 17:21:47 ----D---- C:\Program Files\Common Files\Bullzip
2015-08-06 17:20:54 ----D---- C:\Program Files\Blender Foundation
2015-08-06 17:18:15 ----D---- C:\Users\Dana\AppData\Roaming\vlc
2015-08-06 17:16:53 ----D---- C:\Program Files\TeamSpeak 3 Client
2015-08-06 17:14:12 ----D---- C:\Program Files (x86)\Corel
2015-08-06 17:13:45 ----D---- C:\AdvancedTshirts
2015-08-06 17:09:48 ----D---- C:\Windows\inf
2015-08-06 17:09:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-06 17:07:10 ----D---- C:\Users\Dana\AppData\Roaming\Dropbox
2015-08-06 11:03:15 ----D---- C:\de-zaloha
2015-08-02 18:52:58 ----D---- C:\Program Files\OBS
2015-08-02 12:04:51 ----D---- C:\Program Files (x86)\AIMP3
2015-07-31 23:44:58 ----D---- C:\Users\Dana\AppData\Roaming\Apple Computer
2015-07-31 17:23:20 ----D---- C:\ProgramData\Package Cache
2015-07-30 15:46:20 ----D---- C:\Temp
2015-07-30 15:45:36 ----D---- C:\Windows\system32\DriverStore
2015-07-30 15:39:24 ----D---- C:\Program Files\NVIDIA Corporation
2015-07-30 15:23:41 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 09:50:19 ----D---- C:\Program Files (x86)\OnTranslator.com
2015-07-28 18:12:53 ----D---- C:\Program Files (x86)\yWriter5
2015-07-28 09:54:04 ----D---- C:\Windows\Logs
2015-07-28 09:46:39 ----D---- C:\Windows\SoftwareDistribution
2015-07-25 09:13:21 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-16 00:22:19 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-16 00:22:19 ----D---- C:\Windows\PolicyDefinitions
2015-07-16 00:22:05 ----D---- C:\Windows\system32\wbem
2015-07-15 16:37:58 ----D---- C:\Program Files (x86)\Java
2015-07-15 16:37:17 ----D---- C:\Program Files\Java
2015-07-15 16:35:02 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-15 11:58:59 ----D---- C:\Program Files (x86)\FileZilla FTP Client
2015-07-14 10:27:39 ----D---- C:\Users\Dana\AppData\Roaming\Notepad++
2015-07-14 10:27:39 ----D---- C:\Program Files (x86)\Notepad++
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-07-25 141416]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-07-02 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2015-03-02 922168]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2015-03-02 128592]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2010-11-20 59392]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2010-11-20 360832]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2014-04-24 450968]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-07-25 162528]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-03-10 44088]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2011-09-16 72216]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2011-09-16 11552]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 141440]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2015-03-02 156360]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2010-11-20 194944]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2010-11-20 95232]
S0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys []
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2013-04-18 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2013-06-28 36352]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-12-13 36720]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2011-11-04 117040]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-01-27 14464]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2015-07-25 461672]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2015-07-25 461672]
R2 Apache2.4;Apache2.4; C:\xampp\apache\bin\httpd.exe [2013-02-23 22016]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-01-07 43336]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2015-07-02 218816]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [2015-07-16 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2015-03-28 89840]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-12-13 194416]
R2 mysql;mysql; C:\xampp\mysql\bin\mysqld.exe [2013-05-16 8151040]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-29 932040]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-07-15 76888]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-29 410952]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-04-25 3592120]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2015-07-25 887128]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2015-07-25 1213072]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2015-03-14 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe [2014-12-15 56648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-01-20 641352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-05-18 1931632]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-29 1255736]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2009-07-14 81920]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Dana at 2015-08-13 11:26:25
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 62 GB (13%) free of 477 GB
Total RAM: 4095 MB (35% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:26:26, on 13.8.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Notepad++\notepad++.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
C:\Program Files\trend micro\Dana.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - Global Startup: OnTranslator.lnk = C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
O8 - Extra context menu item: Copy to Semagic - C:\Program Files (x86)\Semagic\copy.htm
O8 - Extra context menu item: Semagic - C:\Program Files (x86)\Semagic\link.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com.tw/common/asusTek_sys_ctrl.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSIEChrome - (no CLSID) - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Apache2.4 - Apache Software Foundation - C:\xampp\apache\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - C:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C:\xampp\service.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
--
End of file - 11405 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\xampp\apache\bin\httpd.exe" -k runservice
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe"
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
C:\xampp\mysql\bin\mysqld.exe --defaults-file=C:\xampp\mysql\bin\my.ini mysql
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PSIService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
WLIDSvcM.exe 3220
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9222bd9e-d09b-4682-8069-9bab272a6cff
\??\C:\Windows\system32\conhost.exe "-196398733511415588451050296951-160479665453309488-983617823145136969-2135700591
"taskhost.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "633773251-9287282941715478063-216327410-14163398031793712065-1669050487-1224695681
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-65bb6618-f4e3-4077-9112-ef7827de7534 -SystemEventPortName:HostProcess-132f18d8-677c-42e1-bbc5-e51d09df0d96 -IoCancelEventPortName:HostProcess-cc1b27c5-2d7a-4740-a745-5f271c504e3f -NonStateChangingEventPortName:HostProcess-831ed768-606c-4c0e-8228-9888cfeadf1c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:abcc2d87-6fec-464f-9013-3e28ad778388 -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\GWX\GWX.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe"
"C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe" /h
"C:/Users/Dana/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Program Files (x86)\Notepad++\notepad++.exe" "C:\AdwCleaner\AdwCleaner[S7].txt"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\AUDIODG.EXE 0xd0
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00001698
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="6904.0.815384493\644148744" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 6904 "\\.\pipe\gecko-crash-server-pipe.6904" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe" --proxy-stub-channel=Flash2844.557BEFA8.25782 --host-broker-channel=Flash2844.557BEFA8.31672 --host-pid=2844 --host-npapi-version=28 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe" --channel=5496.0039F7EC.1683103128 --proxy-stub-channel=Flash2844.557BEFA8.25782 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll" --host-npapi-version=28 --type=renderer
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Dana\Documents\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001Core.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana\extensions\
abs@avira.com
seoanalysistool@seoworkers
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 551520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 212576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-29 53288576]
"Akamai NetSession Interface"=C:\Users\Dana\AppData\Local\Akamai\netsession_win.exe [2014-10-30 4673432]
"Dropbox Update"=C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-01 134512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-01-20 43848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Dana\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI]
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe /server []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Monitor Apache Servers.lnk]
C:\PROGRA~2\APACHE~1\Apache2.2\bin\APACHE~1.EXE [2012-01-28 41051]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~3\Office12\ONENOTEM.EXE [2009-02-26 97680]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
OnTranslator.lnk - C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.l3codecp"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit -
.js - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
.txt - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
======List of files/folders created in the last 1 month======
2015-08-12 17:04:13 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 17:04:13 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 12:14:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-12 12:14:06 ----A---- C:\Windows\system32\ntdll.dll
2015-08-12 12:14:05 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-08-12 12:14:05 ----A---- C:\Windows\system32\kernel32.dll
2015-08-12 12:14:04 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-12 12:14:04 ----A---- C:\Windows\system32\sysmain.dll
2015-08-12 12:14:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-08-12 12:14:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\wow64.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\rstrui.exe
2015-08-12 12:14:03 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\KernelBase.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\winsrv.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\wdigest.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\srcore.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\smss.exe
2015-08-12 12:14:02 ----A---- C:\Windows\system32\schannel.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\rpcrt4.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\ncrypt.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\msv1_0.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\kerberos.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-12 12:14:02 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\conhost.exe
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-08-12 12:14:01 ----A---- C:\Windows\system32\wow64win.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\TSpkg.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\sspisrv.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\sspicli.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\srclient.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\secur32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\lsass.exe
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\cryptbase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\credssp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\auditpol.exe
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\system32\apisetschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\system32\adtschema.dll
2015-08-12 12:13:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-08-12 12:13:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-12 12:13:59 ----A---- C:\Windows\system32\msobjs.dll
2015-08-12 12:13:59 ----A---- C:\Windows\system32\msaudite.dll
2015-08-12 12:13:49 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\system32\davclnt.dll
2015-08-12 12:11:39 ----A---- C:\Windows\system32\basesrv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\invagent.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\generaltel.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\devinv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\appraiser.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\aeinv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\acmigration.dll
2015-08-12 12:11:05 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-12 12:11:05 ----A---- C:\Windows\system32\aepdu.dll
2015-08-12 12:09:24 ----A---- C:\Windows\system32\mstscax.dll
2015-08-12 12:09:23 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-08-12 12:09:23 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-12 12:09:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-12 12:09:22 ----A---- C:\Windows\system32\wksprt.exe
2015-08-12 12:09:22 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-12 12:09:22 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\iertutil.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\iernonce.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-12 12:09:17 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-12 12:09:17 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-12 12:09:16 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-12 12:09:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-12 12:09:16 ----A---- C:\Windows\system32\urlmon.dll
2015-08-12 12:09:16 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-12 12:09:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-12 12:09:14 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-12 12:09:14 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-12 12:09:14 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-12 12:09:13 ----A---- C:\Windows\system32\iesetup.dll
2015-08-12 12:09:13 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-12 12:09:11 ----A---- C:\Windows\system32\vbscript.dll
2015-08-12 12:09:11 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-12 12:09:10 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-12 12:09:10 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-12 12:09:10 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-12 12:09:10 ----A---- C:\Windows\system32\ieui.dll
2015-08-12 12:09:10 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\ieframe.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\wininet.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript9.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript.dll
2015-08-12 12:09:07 ----A---- C:\Windows\system32\msrating.dll
2015-08-12 12:09:07 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-12 12:09:06 ----A---- C:\Windows\system32\mshtml.dll
2015-08-12 12:09:00 ----A---- C:\Windows\system32\msxml6.dll
2015-08-12 12:09:00 ----A---- C:\Windows\system32\msxml3.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-12 12:08:59 ----A---- C:\Windows\system32\msxml6r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\system32\msxml3r.dll
2015-08-12 12:02:12 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-12 12:02:12 ----A---- C:\Windows\system32\notepad.exe
2015-08-12 12:02:12 ----A---- C:\Windows\notepad.exe
2015-08-12 12:02:09 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wudriver.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wucltux.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuapi.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-12 12:02:07 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-12 12:02:07 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wups2.dll
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wups.dll
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wuapp.exe
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-12 11:04:31 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-08-12 10:40:37 ----D---- C:\Users\Dana\AppData\Roaming\InstallShield
2015-08-11 10:32:32 ----HD---- C:\$Windows.~WS
2015-08-10 17:32:09 ----D---- C:\Program Files (x86)\Magical Jelly Bean
2015-08-08 10:33:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-30 15:45:38 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvoglv64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvIFR64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvFBC64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispgenco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuda.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-07-30 15:36:42 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-07-30 15:36:40 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-07-30 15:36:40 ----A---- C:\Windows\system32\nvcompiler.dll
2015-07-30 15:22:14 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-07-30 15:22:13 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-07-21 17:34:44 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\lpk.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\atmfd.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\atmlib.dll
2015-07-15 16:42:51 ----D---- C:\Program Files (x86)\QuickTime
2015-07-15 16:37:43 ----A---- C:\Windows\SYSWOW64\RENBADE.tmp
2015-07-15 09:55:50 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-15 09:55:50 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\rdpcorets.dll
2015-07-15 09:55:29 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 09:55:28 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 09:55:28 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\crypt32.dll
2015-07-15 09:45:00 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\consent.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2015-08-13 11:26:26 ----D---- C:\Program Files\trend micro
2015-08-13 11:26:25 ----D---- C:\Windows\temp
2015-08-13 11:08:32 ----D---- C:\Users\Dana\AppData\Roaming\Skype
2015-08-13 09:43:13 ----D---- C:\Windows\system32\config
2015-08-13 09:38:48 ----D---- C:\Users\Dana\AppData\Roaming\OnTranslator
2015-08-13 09:33:13 ----D---- C:\ProgramData\NVIDIA
2015-08-13 09:31:28 ----D---- C:\AdwCleaner
2015-08-13 09:31:23 ----D---- C:\Windows\system32\drivers
2015-08-13 09:31:21 ----D---- C:\ProgramData
2015-08-13 09:19:11 ----SHD---- C:\Windows\Installer
2015-08-13 09:19:11 ----HD---- C:\Config.Msi
2015-08-13 00:13:04 ----D---- C:\Windows\Microsoft.NET
2015-08-13 00:12:13 ----RSD---- C:\Windows\assembly
2015-08-12 19:58:54 ----D---- C:\Windows\winsxs
2015-08-12 19:55:31 ----D---- C:\Windows\Internet Logs
2015-08-12 19:51:57 ----SD---- C:\Windows\system32\CompatTel
2015-08-12 19:51:56 ----D---- C:\Windows\SysWOW64
2015-08-12 19:51:56 ----D---- C:\Windows\system32\appraiser
2015-08-12 19:51:56 ----D---- C:\Windows\System32
2015-08-12 19:51:56 ----D---- C:\Windows\AppPatch
2015-08-12 19:51:53 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-08-12 19:51:53 ----D---- C:\Windows\system32\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\system32\drivers\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-12 19:51:53 ----D---- C:\Windows\system32\cs-CZ
2015-08-12 19:51:45 ----D---- C:\Program Files\Internet Explorer
2015-08-12 19:51:41 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-12 19:51:37 ----D---- C:\Windows
2015-08-12 17:05:16 ----D---- C:\ProgramData\Microsoft Help
2015-08-12 17:02:25 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-12 17:02:25 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 16:53:00 ----D---- C:\Windows\system32\MRT
2015-08-12 16:39:49 ----A---- C:\Windows\system32\MRT.exe
2015-08-12 16:38:39 ----SHD---- C:\System Volume Information
2015-08-12 16:37:00 ----D---- C:\Users\Dana\AppData\Roaming\AIMP3
2015-08-12 12:12:34 ----D---- C:\Windows\system32\catroot2
2015-08-12 12:08:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-12 12:08:41 ----D---- C:\Program Files (x86)\Zaklínač - Rozšířená edice
2015-08-12 11:38:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-12 11:23:45 ----D---- C:\Program Files (x86)\LogMeIn
2015-08-12 11:15:46 ----RD---- C:\Program Files (x86)
2015-08-12 10:44:55 ----D---- C:\Program Files\Inkscape-0.48
2015-08-12 09:48:11 ----D---- C:\Windows\Prefetch
2015-08-11 12:18:15 ----D---- C:\Program Files (x86)\Steam
2015-08-11 11:59:42 ----D---- C:\Users\Dana\AppData\Roaming\OBS
2015-08-11 11:29:05 ----D---- C:\Windows\system32\Tasks
2015-08-11 10:46:27 ----D---- C:\catdbapi
2015-08-11 10:33:53 ----D---- C:\Windows\Panther
2015-08-10 17:35:39 ----HD---- C:\$Windows.~BT
2015-08-10 10:55:30 ----D---- C:\Users\Dana\AppData\Roaming\FileZilla
2015-08-10 00:36:20 ----D---- C:\Users\Dana\AppData\Roaming\KeePass
2015-08-09 09:16:46 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-06 19:55:23 ----D---- C:\ProgramData\Freemake
2015-08-06 19:55:20 ----D---- C:\Program Files (x86)\Freemake
2015-08-06 19:55:15 ----D---- C:\Program Files (x86)\Common Files
2015-08-06 19:48:33 ----D---- C:\Program Files (x86)\Opera
2015-08-06 19:48:29 ----D---- C:\Users\Dana\AppData\Roaming\Opera Software
2015-08-06 18:35:23 ----DC---- C:\Windows\system32\DRVSTORE
2015-08-06 18:32:09 ----RD---- C:\Program Files
2015-08-06 18:19:14 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-08-06 17:57:35 ----D---- C:\Program Files\dm
2015-08-06 17:28:55 ----D---- C:\ProgramData\Corel
2015-08-06 17:28:45 ----RSD---- C:\Windows\Fonts
2015-08-06 17:22:32 ----D---- C:\Program Files (x86)\EA GAMES
2015-08-06 17:21:47 ----D---- C:\Program Files\Common Files\Bullzip
2015-08-06 17:20:54 ----D---- C:\Program Files\Blender Foundation
2015-08-06 17:18:15 ----D---- C:\Users\Dana\AppData\Roaming\vlc
2015-08-06 17:16:53 ----D---- C:\Program Files\TeamSpeak 3 Client
2015-08-06 17:14:12 ----D---- C:\Program Files (x86)\Corel
2015-08-06 17:13:45 ----D---- C:\AdvancedTshirts
2015-08-06 17:09:48 ----D---- C:\Windows\inf
2015-08-06 17:09:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-06 17:07:10 ----D---- C:\Users\Dana\AppData\Roaming\Dropbox
2015-08-06 11:03:15 ----D---- C:\de-zaloha
2015-08-02 18:52:58 ----D---- C:\Program Files\OBS
2015-08-02 12:04:51 ----D---- C:\Program Files (x86)\AIMP3
2015-07-31 23:44:58 ----D---- C:\Users\Dana\AppData\Roaming\Apple Computer
2015-07-31 17:23:20 ----D---- C:\ProgramData\Package Cache
2015-07-30 15:46:20 ----D---- C:\Temp
2015-07-30 15:45:36 ----D---- C:\Windows\system32\DriverStore
2015-07-30 15:39:24 ----D---- C:\Program Files\NVIDIA Corporation
2015-07-30 15:23:41 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 09:50:19 ----D---- C:\Program Files (x86)\OnTranslator.com
2015-07-28 18:12:53 ----D---- C:\Program Files (x86)\yWriter5
2015-07-28 09:54:04 ----D---- C:\Windows\Logs
2015-07-28 09:46:39 ----D---- C:\Windows\SoftwareDistribution
2015-07-25 09:13:21 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-16 00:22:19 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-16 00:22:19 ----D---- C:\Windows\PolicyDefinitions
2015-07-16 00:22:05 ----D---- C:\Windows\system32\wbem
2015-07-15 16:37:58 ----D---- C:\Program Files (x86)\Java
2015-07-15 16:37:17 ----D---- C:\Program Files\Java
2015-07-15 16:35:02 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-15 11:58:59 ----D---- C:\Program Files (x86)\FileZilla FTP Client
2015-07-14 10:27:39 ----D---- C:\Users\Dana\AppData\Roaming\Notepad++
2015-07-14 10:27:39 ----D---- C:\Program Files (x86)\Notepad++
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-07-25 141416]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-07-02 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2015-03-02 922168]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2015-03-02 128592]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2010-11-20 59392]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2010-11-20 360832]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2014-04-24 450968]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-07-25 162528]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-03-10 44088]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2011-09-16 72216]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2011-09-16 11552]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 141440]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2015-03-02 156360]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2010-11-20 194944]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2010-11-20 95232]
S0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys []
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2013-04-18 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2013-06-28 36352]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-12-13 36720]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2011-11-04 117040]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-01-27 14464]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2015-07-25 461672]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2015-07-25 461672]
R2 Apache2.4;Apache2.4; C:\xampp\apache\bin\httpd.exe [2013-02-23 22016]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-01-07 43336]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2015-07-02 218816]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [2015-07-16 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2015-03-28 89840]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-12-13 194416]
R2 mysql;mysql; C:\xampp\mysql\bin\mysqld.exe [2013-05-16 8151040]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-29 932040]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-07-15 76888]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-29 410952]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-04-25 3592120]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2015-07-25 887128]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2015-07-25 1213072]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2015-03-14 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe [2014-12-15 56648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-01-20 641352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-05-18 1931632]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-29 1255736]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2009-07-14 81920]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118311
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Dana\AppData\Local\Akamai
:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
ninja_girl
- Návštěvník
- Příspěvky: 106
- Registrován: 20 črc 2005 17:31
- Bydliště: Brno
Re: Zpomalený počítač
Po restartu po použití OTM dlouho nabíhala plocha po přihlášení, Firefox se spuoutěl pomalu, celý systém zbržděný, víceméně nepoužitelný v rozumném čase. Druhý restart pomohl a teď to startuje rychleji.
All processes killed
========== FILES ==========
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Logs\dump folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Logs folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Languages folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4\2015\3dsmax\wi\{ef2af73d-38f9-44c1-a2f3-912d41520305} folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4\2015\3dsmax\wi folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4\2015\3dsmax folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4\2015 folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4 folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai folder moved successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Dana
->Temp folder emptied: 5920782519 bytes
->Temporary Internet Files folder emptied: 125964601 bytes
->Java cache emptied: 612867 bytes
->FireFox cache emptied: 381769138 bytes
->Google Chrome cache emptied: 129642961 bytes
->Flash cache emptied: 33118 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Host
->Temp folder emptied: 8602958 bytes
->Temporary Internet Files folder emptied: 4891068 bytes
->Google Chrome cache emptied: 6370741 bytes
->Flash cache emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 273935725 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 6 535,00 mb
[EMPTYFLASH]
User: All Users
User: Dana
->Flash cache emptied: 0 bytes
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Host
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 08132015_192013
Files moved on Reboot...
File move failed. C:\Users\Dana\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\df50893318f441f59bc18f2a14741614_fce8395f8fd8a80f_6229ccd76215aea1_0_0.bin scheduled to be moved on reboot.
File move failed. C:\Users\Dana\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\df50893318f441f59bc18f2a14741614_fce8395f8fd8a80f_6229ccd76215aea1_0_0.toc scheduled to be moved on reboot.
C:\Users\Dana\AppData\Local\Temp\7zS0EAA\HPSLPSVC64.DLL moved successfully.
C:\Users\Dana\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Dana\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Windows\temp\ZLT01ab6.TMP moved successfully.
File move failed. C:\Windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
All processes killed
========== FILES ==========
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Logs\dump folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Logs folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Languages folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4\2015\3dsmax\wi\{ef2af73d-38f9-44c1-a2f3-912d41520305} folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4\2015\3dsmax\wi folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4\2015\3dsmax folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4\2015 folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com\swdldnet4 folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache\trial2.autodesk.com folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai\Cache folder moved successfully.
C:\Users\Dana\AppData\Local\Akamai folder moved successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Dana
->Temp folder emptied: 5920782519 bytes
->Temporary Internet Files folder emptied: 125964601 bytes
->Java cache emptied: 612867 bytes
->FireFox cache emptied: 381769138 bytes
->Google Chrome cache emptied: 129642961 bytes
->Flash cache emptied: 33118 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Host
->Temp folder emptied: 8602958 bytes
->Temporary Internet Files folder emptied: 4891068 bytes
->Google Chrome cache emptied: 6370741 bytes
->Flash cache emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 273935725 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 6 535,00 mb
[EMPTYFLASH]
User: All Users
User: Dana
->Flash cache emptied: 0 bytes
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Host
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 08132015_192013
Files moved on Reboot...
File move failed. C:\Users\Dana\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\df50893318f441f59bc18f2a14741614_fce8395f8fd8a80f_6229ccd76215aea1_0_0.bin scheduled to be moved on reboot.
File move failed. C:\Users\Dana\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\df50893318f441f59bc18f2a14741614_fce8395f8fd8a80f_6229ccd76215aea1_0_0.toc scheduled to be moved on reboot.
C:\Users\Dana\AppData\Local\Temp\7zS0EAA\HPSLPSVC64.DLL moved successfully.
C:\Users\Dana\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Dana\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Windows\temp\ZLT01ab6.TMP moved successfully.
File move failed. C:\Windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Naposledy upravil(a) ninja_girl dne 14 srp 2015 00:07, celkem upraveno 1 x.
-
ninja_girl
- Návštěvník
- Příspěvky: 106
- Registrován: 20 črc 2005 17:31
- Bydliště: Brno
Re: Zpomalený počítač
Logfile of random's system information tool 1.09 (written by random/random)
Run by Dana at 2015-08-14 01:03:00
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 64 GB (13%) free of 477 GB
Total RAM: 4095 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:03:08, on 14.8.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
C:\Program Files\trend micro\Dana.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - Global Startup: OnTranslator.lnk = C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
O8 - Extra context menu item: Copy to Semagic - C:\Program Files (x86)\Semagic\copy.htm
O8 - Extra context menu item: Semagic - C:\Program Files (x86)\Semagic\link.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com.tw/common/asusTek_sys_ctrl.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSIEChrome - (no CLSID) - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Apache2.4 - Apache Software Foundation - C:\xampp\apache\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - C:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C:\xampp\service.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
--
End of file - 10890 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2c4
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\xampp\apache\bin\httpd.exe" -k runservice
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe"
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
C:\xampp\mysql\bin\mysqld.exe --defaults-file=C:\xampp\mysql\bin\my.ini mysql
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PSIService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9222bd9e-d09b-4682-8069-9bab272a6cff
\??\C:\Windows\system32\conhost.exe "1224051269-502852003-1358659450-1966991577-2091029738-1023228081759635946-857328873
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-4382551342064681045-10990174041931154793-3847053811611604694-833052533-180113757
WLIDSvcM.exe 3324
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000540
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7c74a80d-0dd1-4019-8632-a6a109297739 -SystemEventPortName:HostProcess-4ab040fb-6b48-484f-8780-62ed9e3753a0 -IoCancelEventPortName:HostProcess-203cb8a2-72ce-41c6-b2c5-ba131e6908cb -NonStateChangingEventPortName:HostProcess-5d75adbb-dfcc-4758-98d4-10dbd100c11f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e5628b56-8966-4fbe-955b-431fcb3cada9 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe" /h
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Users\Dana\Documents\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001Core.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001UA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana\extensions\
abs@avira.com
seoanalysistool@seoworkers
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 551520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 212576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-29 53288576]
"Dropbox Update"=C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-01 134512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-01-20 43848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Dana\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI]
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe /server []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Monitor Apache Servers.lnk]
C:\PROGRA~2\APACHE~1\Apache2.2\bin\APACHE~1.EXE [2012-01-28 41051]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~3\Office12\ONENOTEM.EXE [2009-02-26 97680]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
OnTranslator.lnk - C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.l3codecp"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit -
.js - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
.txt - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
======List of files/folders created in the last 1 month======
2015-08-13 19:20:13 ----D---- C:\_OTM
2015-08-12 17:04:13 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 17:04:13 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 12:14:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-12 12:14:06 ----A---- C:\Windows\system32\ntdll.dll
2015-08-12 12:14:05 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-08-12 12:14:05 ----A---- C:\Windows\system32\kernel32.dll
2015-08-12 12:14:04 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-12 12:14:04 ----A---- C:\Windows\system32\sysmain.dll
2015-08-12 12:14:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-08-12 12:14:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\wow64.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\rstrui.exe
2015-08-12 12:14:03 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\KernelBase.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\winsrv.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\wdigest.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\srcore.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\smss.exe
2015-08-12 12:14:02 ----A---- C:\Windows\system32\schannel.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\rpcrt4.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\ncrypt.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\msv1_0.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\kerberos.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-12 12:14:02 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\conhost.exe
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-08-12 12:14:01 ----A---- C:\Windows\system32\wow64win.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\TSpkg.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\sspisrv.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\sspicli.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\srclient.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\secur32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\lsass.exe
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\cryptbase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\credssp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\auditpol.exe
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\system32\apisetschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\system32\adtschema.dll
2015-08-12 12:13:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-08-12 12:13:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-12 12:13:59 ----A---- C:\Windows\system32\msobjs.dll
2015-08-12 12:13:59 ----A---- C:\Windows\system32\msaudite.dll
2015-08-12 12:13:49 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\system32\davclnt.dll
2015-08-12 12:11:39 ----A---- C:\Windows\system32\basesrv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\invagent.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\generaltel.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\devinv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\appraiser.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\aeinv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\acmigration.dll
2015-08-12 12:11:05 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-12 12:11:05 ----A---- C:\Windows\system32\aepdu.dll
2015-08-12 12:09:24 ----A---- C:\Windows\system32\mstscax.dll
2015-08-12 12:09:23 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-08-12 12:09:23 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-12 12:09:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-12 12:09:22 ----A---- C:\Windows\system32\wksprt.exe
2015-08-12 12:09:22 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-12 12:09:22 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\iertutil.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\iernonce.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-12 12:09:17 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-12 12:09:17 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-12 12:09:16 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-12 12:09:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-12 12:09:16 ----A---- C:\Windows\system32\urlmon.dll
2015-08-12 12:09:16 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-12 12:09:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-12 12:09:14 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-12 12:09:14 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-12 12:09:14 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-12 12:09:13 ----A---- C:\Windows\system32\iesetup.dll
2015-08-12 12:09:13 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-12 12:09:11 ----A---- C:\Windows\system32\vbscript.dll
2015-08-12 12:09:11 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-12 12:09:10 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-12 12:09:10 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-12 12:09:10 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-12 12:09:10 ----A---- C:\Windows\system32\ieui.dll
2015-08-12 12:09:10 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\ieframe.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\wininet.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript9.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript.dll
2015-08-12 12:09:07 ----A---- C:\Windows\system32\msrating.dll
2015-08-12 12:09:07 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-12 12:09:06 ----A---- C:\Windows\system32\mshtml.dll
2015-08-12 12:09:00 ----A---- C:\Windows\system32\msxml6.dll
2015-08-12 12:09:00 ----A---- C:\Windows\system32\msxml3.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-12 12:08:59 ----A---- C:\Windows\system32\msxml6r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\system32\msxml3r.dll
2015-08-12 12:02:12 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-12 12:02:12 ----A---- C:\Windows\system32\notepad.exe
2015-08-12 12:02:12 ----A---- C:\Windows\notepad.exe
2015-08-12 12:02:09 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wudriver.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wucltux.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuapi.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-12 12:02:07 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-12 12:02:07 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wups2.dll
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wups.dll
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wuapp.exe
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-12 11:04:31 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-08-12 10:40:37 ----D---- C:\Users\Dana\AppData\Roaming\InstallShield
2015-08-11 10:32:32 ----HD---- C:\$Windows.~WS
2015-08-10 17:32:09 ----D---- C:\Program Files (x86)\Magical Jelly Bean
2015-08-08 10:33:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-30 15:45:38 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvoglv64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvIFR64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvFBC64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispgenco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuda.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-07-30 15:36:42 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-07-30 15:36:40 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-07-30 15:36:40 ----A---- C:\Windows\system32\nvcompiler.dll
2015-07-30 15:22:14 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-07-30 15:22:13 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-07-21 17:34:44 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\lpk.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\atmfd.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\atmlib.dll
2015-07-15 16:42:51 ----D---- C:\Program Files (x86)\QuickTime
2015-07-15 09:55:50 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-15 09:55:50 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\rdpcorets.dll
2015-07-15 09:55:29 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 09:55:28 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 09:55:28 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\crypt32.dll
2015-07-15 09:45:00 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\consent.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2015-08-14 01:03:08 ----D---- C:\Windows\Prefetch
2015-08-14 01:03:06 ----D---- C:\Windows\temp
2015-08-14 01:03:05 ----D---- C:\Program Files\trend micro
2015-08-14 01:01:43 ----D---- C:\Users\Dana\AppData\Roaming\Skype
2015-08-14 00:16:59 ----D---- C:\Users\Dana\AppData\Roaming\FileZilla
2015-08-13 19:57:14 ----D---- C:\Windows\system32\config
2015-08-13 19:56:15 ----D---- C:\Windows\Internet Logs
2015-08-13 19:54:04 ----D---- C:\Users\Dana\AppData\Roaming\OnTranslator
2015-08-13 19:52:34 ----D---- C:\ProgramData\NVIDIA
2015-08-13 19:33:02 ----D---- C:\Windows\SysWOW64
2015-08-13 19:20:18 ----D---- C:\Windows\Tasks
2015-08-13 18:03:46 ----D---- C:\Users\Dana\AppData\Roaming\AIMP3
2015-08-13 17:37:15 ----SHD---- C:\Windows\Installer
2015-08-13 17:37:15 ----HD---- C:\Config.Msi
2015-08-13 16:17:02 ----D---- C:\Windows\System32
2015-08-13 16:17:02 ----D---- C:\Windows\inf
2015-08-13 16:17:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-13 16:11:33 ----D---- C:\Users\Dana\AppData\Roaming\Dropbox
2015-08-13 15:22:28 ----SHD---- C:\System Volume Information
2015-08-13 09:31:28 ----D---- C:\AdwCleaner
2015-08-13 09:31:23 ----D---- C:\Windows\system32\drivers
2015-08-13 09:31:21 ----D---- C:\ProgramData
2015-08-13 00:13:04 ----D---- C:\Windows\Microsoft.NET
2015-08-13 00:12:13 ----RSD---- C:\Windows\assembly
2015-08-12 19:58:54 ----D---- C:\Windows\winsxs
2015-08-12 19:51:57 ----SD---- C:\Windows\system32\CompatTel
2015-08-12 19:51:56 ----D---- C:\Windows\system32\appraiser
2015-08-12 19:51:56 ----D---- C:\Windows\AppPatch
2015-08-12 19:51:53 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-08-12 19:51:53 ----D---- C:\Windows\system32\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\system32\drivers\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-12 19:51:53 ----D---- C:\Windows\system32\cs-CZ
2015-08-12 19:51:45 ----D---- C:\Program Files\Internet Explorer
2015-08-12 19:51:41 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-12 19:51:37 ----D---- C:\Windows
2015-08-12 17:05:16 ----D---- C:\ProgramData\Microsoft Help
2015-08-12 17:02:25 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-12 17:02:25 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 16:53:00 ----D---- C:\Windows\system32\MRT
2015-08-12 16:39:49 ----A---- C:\Windows\system32\MRT.exe
2015-08-12 12:12:34 ----D---- C:\Windows\system32\catroot2
2015-08-12 12:08:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-12 12:08:41 ----D---- C:\Program Files (x86)\Zaklínač - Rozšířená edice
2015-08-12 11:38:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-12 11:23:45 ----D---- C:\Program Files (x86)\LogMeIn
2015-08-12 11:15:46 ----RD---- C:\Program Files (x86)
2015-08-12 10:44:55 ----D---- C:\Program Files\Inkscape-0.48
2015-08-11 12:18:15 ----D---- C:\Program Files (x86)\Steam
2015-08-11 11:59:42 ----D---- C:\Users\Dana\AppData\Roaming\OBS
2015-08-11 11:29:05 ----D---- C:\Windows\system32\Tasks
2015-08-11 10:46:27 ----D---- C:\catdbapi
2015-08-11 10:33:53 ----D---- C:\Windows\Panther
2015-08-10 17:35:39 ----HD---- C:\$Windows.~BT
2015-08-10 00:36:20 ----D---- C:\Users\Dana\AppData\Roaming\KeePass
2015-08-09 09:16:46 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-06 19:55:23 ----D---- C:\ProgramData\Freemake
2015-08-06 19:55:20 ----D---- C:\Program Files (x86)\Freemake
2015-08-06 19:55:15 ----D---- C:\Program Files (x86)\Common Files
2015-08-06 19:48:33 ----D---- C:\Program Files (x86)\Opera
2015-08-06 19:48:29 ----D---- C:\Users\Dana\AppData\Roaming\Opera Software
2015-08-06 18:35:23 ----DC---- C:\Windows\system32\DRVSTORE
2015-08-06 18:32:09 ----RD---- C:\Program Files
2015-08-06 18:19:14 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-08-06 17:57:35 ----D---- C:\Program Files\dm
2015-08-06 17:28:55 ----D---- C:\ProgramData\Corel
2015-08-06 17:28:45 ----RSD---- C:\Windows\Fonts
2015-08-06 17:22:32 ----D---- C:\Program Files (x86)\EA GAMES
2015-08-06 17:21:47 ----D---- C:\Program Files\Common Files\Bullzip
2015-08-06 17:20:54 ----D---- C:\Program Files\Blender Foundation
2015-08-06 17:18:15 ----D---- C:\Users\Dana\AppData\Roaming\vlc
2015-08-06 17:16:53 ----D---- C:\Program Files\TeamSpeak 3 Client
2015-08-06 17:14:12 ----D---- C:\Program Files (x86)\Corel
2015-08-06 17:13:45 ----D---- C:\AdvancedTshirts
2015-08-06 11:03:15 ----D---- C:\de-zaloha
2015-08-02 18:52:58 ----D---- C:\Program Files\OBS
2015-08-02 12:04:51 ----D---- C:\Program Files (x86)\AIMP3
2015-07-31 23:44:58 ----D---- C:\Users\Dana\AppData\Roaming\Apple Computer
2015-07-31 17:23:20 ----D---- C:\ProgramData\Package Cache
2015-07-30 15:46:20 ----D---- C:\Temp
2015-07-30 15:45:36 ----D---- C:\Windows\system32\DriverStore
2015-07-30 15:39:24 ----D---- C:\Program Files\NVIDIA Corporation
2015-07-30 15:23:41 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 09:50:19 ----D---- C:\Program Files (x86)\OnTranslator.com
2015-07-28 18:12:53 ----D---- C:\Program Files (x86)\yWriter5
2015-07-28 09:54:04 ----D---- C:\Windows\Logs
2015-07-28 09:46:39 ----D---- C:\Windows\SoftwareDistribution
2015-07-25 09:13:21 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-16 00:22:19 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-16 00:22:19 ----D---- C:\Windows\PolicyDefinitions
2015-07-16 00:22:05 ----D---- C:\Windows\system32\wbem
2015-07-15 16:37:58 ----D---- C:\Program Files (x86)\Java
2015-07-15 16:37:17 ----D---- C:\Program Files\Java
2015-07-15 16:35:02 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-15 11:58:59 ----D---- C:\Program Files (x86)\FileZilla FTP Client
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-07-25 141416]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-07-02 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2015-03-02 922168]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2015-03-02 128592]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2010-11-20 59392]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2010-11-20 360832]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2014-04-24 450968]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-07-25 162528]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-03-10 44088]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2011-09-16 72216]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2011-09-16 11552]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 141440]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2015-03-02 156360]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2010-11-20 194944]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2010-11-20 95232]
S0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys []
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2013-04-18 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2013-06-28 36352]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-12-13 36720]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2011-11-04 117040]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-01-27 14464]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2015-07-25 461672]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2015-07-25 461672]
R2 Apache2.4;Apache2.4; C:\xampp\apache\bin\httpd.exe [2013-02-23 22016]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-01-07 43336]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2015-07-02 218816]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [2015-07-16 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2015-03-28 89840]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-12-13 194416]
R2 mysql;mysql; C:\xampp\mysql\bin\mysqld.exe [2013-05-16 8151040]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-29 932040]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-07-15 76888]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-29 410952]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-04-25 3592120]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2015-07-25 887128]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2015-07-25 1213072]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2015-03-14 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe [2014-12-15 56648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-01-20 641352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-05-18 1931632]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-29 1255736]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2009-07-14 81920]
-----------------EOF-----------------
Run by Dana at 2015-08-14 01:03:00
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 64 GB (13%) free of 477 GB
Total RAM: 4095 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:03:08, on 14.8.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
C:\Program Files\trend micro\Dana.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - Global Startup: OnTranslator.lnk = C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
O8 - Extra context menu item: Copy to Semagic - C:\Program Files (x86)\Semagic\copy.htm
O8 - Extra context menu item: Semagic - C:\Program Files (x86)\Semagic\link.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com.tw/common/asusTek_sys_ctrl.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSIEChrome - (no CLSID) - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Apache2.4 - Apache Software Foundation - C:\xampp\apache\bin\httpd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - C:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\SysWOW64\PSIService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C:\xampp\service.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
--
End of file - 10890 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2c4
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\xampp\apache\bin\httpd.exe" -k runservice
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe"
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
C:\xampp\mysql\bin\mysqld.exe --defaults-file=C:\xampp\mysql\bin\my.ini mysql
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PSIService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 9222bd9e-d09b-4682-8069-9bab272a6cff
\??\C:\Windows\system32\conhost.exe "1224051269-502852003-1358659450-1966991577-2091029738-1023228081759635946-857328873
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-4382551342064681045-10990174041931154793-3847053811611604694-833052533-180113757
WLIDSvcM.exe 3324
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000540
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7c74a80d-0dd1-4019-8632-a6a109297739 -SystemEventPortName:HostProcess-4ab040fb-6b48-484f-8780-62ed9e3753a0 -IoCancelEventPortName:HostProcess-203cb8a2-72ce-41c6-b2c5-ba131e6908cb -NonStateChangingEventPortName:HostProcess-5d75adbb-dfcc-4758-98d4-10dbd100c11f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e5628b56-8966-4fbe-955b-431fcb3cada9 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe" /h
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Users\Dana\Documents\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001Core.job
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-1602808253-430055931-27258192-1001UA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\nbzzwq11.Dana\extensions\
abs@avira.com
seoanalysistool@seoworkers
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 551520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 212576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-15 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-15 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-07-24 1710568]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-07-24 2634896]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-29 53288576]
"Dropbox Update"=C:\Users\Dana\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-01 134512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-01-20 43848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Dana\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI]
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe /server []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Monitor Apache Servers.lnk]
C:\PROGRA~2\APACHE~1\Apache2.2\bin\APACHE~1.EXE [2012-01-28 41051]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2005-03-16 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MICROS~3\Office12\ONENOTEM.EXE [2009-02-26 97680]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
OnTranslator.lnk - C:\Program Files (x86)\OnTranslator.com\OnTranslator.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"VIDC.FPS1"=frapsv64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.l3codecp"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit -
.js - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
.txt - open - "C:\Program Files (x86)\Notepad++\notepad++.exe" "%1"
======List of files/folders created in the last 1 month======
2015-08-13 19:20:13 ----D---- C:\_OTM
2015-08-12 17:04:13 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 17:04:13 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 12:14:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-08-12 12:14:06 ----A---- C:\Windows\system32\ntdll.dll
2015-08-12 12:14:05 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-08-12 12:14:05 ----A---- C:\Windows\system32\kernel32.dll
2015-08-12 12:14:04 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-08-12 12:14:04 ----A---- C:\Windows\system32\sysmain.dll
2015-08-12 12:14:03 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-08-12 12:14:03 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\wow64.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\rstrui.exe
2015-08-12 12:14:03 ----A---- C:\Windows\system32\lsasrv.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\KernelBase.dll
2015-08-12 12:14:03 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-08-12 12:14:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\winsrv.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\wdigest.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\srcore.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\smss.exe
2015-08-12 12:14:02 ----A---- C:\Windows\system32\schannel.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\rpcrt4.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\ncrypt.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\msv1_0.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\kerberos.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-08-12 12:14:02 ----A---- C:\Windows\system32\csrsrv.dll
2015-08-12 12:14:02 ----A---- C:\Windows\system32\conhost.exe
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 12:14:01 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-08-12 12:14:01 ----A---- C:\Windows\system32\wow64win.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\wow64cpu.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\TSpkg.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\sspisrv.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\sspicli.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\srclient.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\secur32.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\ntvdm64.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\lsass.exe
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-08-12 12:14:01 ----A---- C:\Windows\system32\cryptbase.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\credssp.dll
2015-08-12 12:14:01 ----A---- C:\Windows\system32\auditpol.exe
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 12:14:00 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\user.exe
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\system32\apisetschema.dll
2015-08-12 12:14:00 ----A---- C:\Windows\system32\adtschema.dll
2015-08-12 12:13:59 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-08-12 12:13:59 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-08-12 12:13:59 ----A---- C:\Windows\system32\msobjs.dll
2015-08-12 12:13:59 ----A---- C:\Windows\system32\msaudite.dll
2015-08-12 12:13:49 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-12 12:13:49 ----A---- C:\Windows\system32\davclnt.dll
2015-08-12 12:11:39 ----A---- C:\Windows\system32\basesrv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\invagent.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\generaltel.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\devinv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\appraiser.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\aeinv.dll
2015-08-12 12:11:06 ----A---- C:\Windows\system32\acmigration.dll
2015-08-12 12:11:05 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-12 12:11:05 ----A---- C:\Windows\system32\aepdu.dll
2015-08-12 12:09:24 ----A---- C:\Windows\system32\mstscax.dll
2015-08-12 12:09:23 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-08-12 12:09:23 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-12 12:09:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-12 12:09:22 ----A---- C:\Windows\system32\wksprt.exe
2015-08-12 12:09:22 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-12 12:09:22 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-08-12 12:09:19 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\iertutil.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-08-12 12:09:19 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-08-12 12:09:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\iernonce.dll
2015-08-12 12:09:18 ----A---- C:\Windows\system32\ie4uinit.exe
2015-08-12 12:09:17 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-08-12 12:09:17 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-08-12 12:09:16 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-08-12 12:09:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-08-12 12:09:16 ----A---- C:\Windows\system32\urlmon.dll
2015-08-12 12:09:16 ----A---- C:\Windows\system32\iedkcs32.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-08-12 12:09:15 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-08-12 12:09:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-08-12 12:09:14 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-08-12 12:09:14 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-12 12:09:14 ----A---- C:\Windows\system32\msfeeds.dll
2015-08-12 12:09:14 ----A---- C:\Windows\system32\dxtrans.dll
2015-08-12 12:09:13 ----A---- C:\Windows\system32\iesetup.dll
2015-08-12 12:09:13 ----A---- C:\Windows\system32\ieapfltr.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-08-12 12:09:11 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-08-12 12:09:11 ----A---- C:\Windows\system32\vbscript.dll
2015-08-12 12:09:11 ----A---- C:\Windows\system32\jsproxy.dll
2015-08-12 12:09:10 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-08-12 12:09:10 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-08-12 12:09:10 ----A---- C:\Windows\system32\ieUnatt.exe
2015-08-12 12:09:10 ----A---- C:\Windows\system32\ieui.dll
2015-08-12 12:09:10 ----A---- C:\Windows\system32\dxtmsft.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\mshtmled.dll
2015-08-12 12:09:09 ----A---- C:\Windows\system32\ieframe.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\wininet.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript9diag.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript9.dll
2015-08-12 12:09:08 ----A---- C:\Windows\system32\jscript.dll
2015-08-12 12:09:07 ----A---- C:\Windows\system32\msrating.dll
2015-08-12 12:09:07 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-08-12 12:09:06 ----A---- C:\Windows\system32\mshtml.dll
2015-08-12 12:09:00 ----A---- C:\Windows\system32\msxml6.dll
2015-08-12 12:09:00 ----A---- C:\Windows\system32\msxml3.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-08-12 12:08:59 ----A---- C:\Windows\system32\msxml6r.dll
2015-08-12 12:08:59 ----A---- C:\Windows\system32\msxml3r.dll
2015-08-12 12:02:12 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-08-12 12:02:12 ----A---- C:\Windows\system32\notepad.exe
2015-08-12 12:02:12 ----A---- C:\Windows\notepad.exe
2015-08-12 12:02:09 ----A---- C:\Windows\system32\wuaueng.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-08-12 12:02:08 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuwebv.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wudriver.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wucltux.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuauclt.exe
2015-08-12 12:02:08 ----A---- C:\Windows\system32\wuapi.dll
2015-08-12 12:02:08 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-08-12 12:02:07 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-08-12 12:02:07 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wups2.dll
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wups.dll
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wuapp.exe
2015-08-12 12:02:07 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-08-12 11:04:31 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-08-12 10:40:37 ----D---- C:\Users\Dana\AppData\Roaming\InstallShield
2015-08-11 10:32:32 ----HD---- C:\$Windows.~WS
2015-08-10 17:32:09 ----D---- C:\Program Files (x86)\Magical Jelly Bean
2015-08-08 10:33:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-07-30 15:45:38 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvopencl.dll
2015-07-30 15:36:44 ----A---- C:\Windows\system32\nvoglv64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-07-30 15:36:43 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvIFR64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\NvFBC64.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispgenco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvdispco6434174.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuvid.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\nvcuda.dll
2015-07-30 15:36:43 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-07-30 15:36:42 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-07-30 15:36:40 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-07-30 15:36:40 ----A---- C:\Windows\system32\nvcompiler.dll
2015-07-30 15:22:14 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-07-30 15:22:13 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-07-21 17:34:44 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\lpk.dll
2015-07-21 17:34:44 ----A---- C:\Windows\system32\atmfd.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\fontsub.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\dciman32.dll
2015-07-21 17:34:43 ----A---- C:\Windows\system32\atmlib.dll
2015-07-15 16:42:51 ----D---- C:\Program Files (x86)\QuickTime
2015-07-15 09:55:50 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-07-15 09:55:50 ----A---- C:\Windows\system32\cewmdm.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-15 09:55:30 ----A---- C:\Windows\system32\rdpcorets.dll
2015-07-15 09:55:29 ----A---- C:\Windows\system32\win32k.sys
2015-07-15 09:55:28 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-07-15 09:55:28 ----A---- C:\Windows\system32\gdi32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-07-15 09:45:44 ----A---- C:\Windows\system32\ole32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\wintrust.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptsvc.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\cryptnet.dll
2015-07-15 09:45:39 ----A---- C:\Windows\system32\crypt32.dll
2015-07-15 09:45:00 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\msi.dll
2015-07-15 09:45:00 ----A---- C:\Windows\system32\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msimsg.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msihnd.dll
2015-07-15 09:44:59 ----A---- C:\Windows\system32\msiexec.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\consent.exe
2015-07-15 09:44:59 ----A---- C:\Windows\system32\appinfo.dll
======List of files/folders modified in the last 1 month======
2015-08-14 01:03:08 ----D---- C:\Windows\Prefetch
2015-08-14 01:03:06 ----D---- C:\Windows\temp
2015-08-14 01:03:05 ----D---- C:\Program Files\trend micro
2015-08-14 01:01:43 ----D---- C:\Users\Dana\AppData\Roaming\Skype
2015-08-14 00:16:59 ----D---- C:\Users\Dana\AppData\Roaming\FileZilla
2015-08-13 19:57:14 ----D---- C:\Windows\system32\config
2015-08-13 19:56:15 ----D---- C:\Windows\Internet Logs
2015-08-13 19:54:04 ----D---- C:\Users\Dana\AppData\Roaming\OnTranslator
2015-08-13 19:52:34 ----D---- C:\ProgramData\NVIDIA
2015-08-13 19:33:02 ----D---- C:\Windows\SysWOW64
2015-08-13 19:20:18 ----D---- C:\Windows\Tasks
2015-08-13 18:03:46 ----D---- C:\Users\Dana\AppData\Roaming\AIMP3
2015-08-13 17:37:15 ----SHD---- C:\Windows\Installer
2015-08-13 17:37:15 ----HD---- C:\Config.Msi
2015-08-13 16:17:02 ----D---- C:\Windows\System32
2015-08-13 16:17:02 ----D---- C:\Windows\inf
2015-08-13 16:17:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-08-13 16:11:33 ----D---- C:\Users\Dana\AppData\Roaming\Dropbox
2015-08-13 15:22:28 ----SHD---- C:\System Volume Information
2015-08-13 09:31:28 ----D---- C:\AdwCleaner
2015-08-13 09:31:23 ----D---- C:\Windows\system32\drivers
2015-08-13 09:31:21 ----D---- C:\ProgramData
2015-08-13 00:13:04 ----D---- C:\Windows\Microsoft.NET
2015-08-13 00:12:13 ----RSD---- C:\Windows\assembly
2015-08-12 19:58:54 ----D---- C:\Windows\winsxs
2015-08-12 19:51:57 ----SD---- C:\Windows\system32\CompatTel
2015-08-12 19:51:56 ----D---- C:\Windows\system32\appraiser
2015-08-12 19:51:56 ----D---- C:\Windows\AppPatch
2015-08-12 19:51:53 ----D---- C:\Windows\SYSWOW64\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-08-12 19:51:53 ----D---- C:\Windows\system32\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\system32\drivers\en-US
2015-08-12 19:51:53 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-12 19:51:53 ----D---- C:\Windows\system32\cs-CZ
2015-08-12 19:51:45 ----D---- C:\Program Files\Internet Explorer
2015-08-12 19:51:41 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-12 19:51:37 ----D---- C:\Windows
2015-08-12 17:05:16 ----D---- C:\ProgramData\Microsoft Help
2015-08-12 17:02:25 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-12 17:02:25 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-12 16:53:00 ----D---- C:\Windows\system32\MRT
2015-08-12 16:39:49 ----A---- C:\Windows\system32\MRT.exe
2015-08-12 12:12:34 ----D---- C:\Windows\system32\catroot2
2015-08-12 12:08:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-12 12:08:41 ----D---- C:\Program Files (x86)\Zaklínač - Rozšířená edice
2015-08-12 11:38:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-12 11:23:45 ----D---- C:\Program Files (x86)\LogMeIn
2015-08-12 11:15:46 ----RD---- C:\Program Files (x86)
2015-08-12 10:44:55 ----D---- C:\Program Files\Inkscape-0.48
2015-08-11 12:18:15 ----D---- C:\Program Files (x86)\Steam
2015-08-11 11:59:42 ----D---- C:\Users\Dana\AppData\Roaming\OBS
2015-08-11 11:29:05 ----D---- C:\Windows\system32\Tasks
2015-08-11 10:46:27 ----D---- C:\catdbapi
2015-08-11 10:33:53 ----D---- C:\Windows\Panther
2015-08-10 17:35:39 ----HD---- C:\$Windows.~BT
2015-08-10 00:36:20 ----D---- C:\Users\Dana\AppData\Roaming\KeePass
2015-08-09 09:16:46 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-06 19:55:23 ----D---- C:\ProgramData\Freemake
2015-08-06 19:55:20 ----D---- C:\Program Files (x86)\Freemake
2015-08-06 19:55:15 ----D---- C:\Program Files (x86)\Common Files
2015-08-06 19:48:33 ----D---- C:\Program Files (x86)\Opera
2015-08-06 19:48:29 ----D---- C:\Users\Dana\AppData\Roaming\Opera Software
2015-08-06 18:35:23 ----DC---- C:\Windows\system32\DRVSTORE
2015-08-06 18:32:09 ----RD---- C:\Program Files
2015-08-06 18:19:14 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-08-06 17:57:35 ----D---- C:\Program Files\dm
2015-08-06 17:28:55 ----D---- C:\ProgramData\Corel
2015-08-06 17:28:45 ----RSD---- C:\Windows\Fonts
2015-08-06 17:22:32 ----D---- C:\Program Files (x86)\EA GAMES
2015-08-06 17:21:47 ----D---- C:\Program Files\Common Files\Bullzip
2015-08-06 17:20:54 ----D---- C:\Program Files\Blender Foundation
2015-08-06 17:18:15 ----D---- C:\Users\Dana\AppData\Roaming\vlc
2015-08-06 17:16:53 ----D---- C:\Program Files\TeamSpeak 3 Client
2015-08-06 17:14:12 ----D---- C:\Program Files (x86)\Corel
2015-08-06 17:13:45 ----D---- C:\AdvancedTshirts
2015-08-06 11:03:15 ----D---- C:\de-zaloha
2015-08-02 18:52:58 ----D---- C:\Program Files\OBS
2015-08-02 12:04:51 ----D---- C:\Program Files (x86)\AIMP3
2015-07-31 23:44:58 ----D---- C:\Users\Dana\AppData\Roaming\Apple Computer
2015-07-31 17:23:20 ----D---- C:\ProgramData\Package Cache
2015-07-30 15:46:20 ----D---- C:\Temp
2015-07-30 15:45:36 ----D---- C:\Windows\system32\DriverStore
2015-07-30 15:39:24 ----D---- C:\Program Files\NVIDIA Corporation
2015-07-30 15:23:41 ----D---- C:\ProgramData\NVIDIA Corporation
2015-07-29 09:50:19 ----D---- C:\Program Files (x86)\OnTranslator.com
2015-07-28 18:12:53 ----D---- C:\Program Files (x86)\yWriter5
2015-07-28 09:54:04 ----D---- C:\Windows\Logs
2015-07-28 09:46:39 ----D---- C:\Windows\SoftwareDistribution
2015-07-25 09:13:21 ----SD---- C:\Windows\system32\GWX
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-07-24 06:21:23 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspcap64.dll
2015-07-24 06:21:14 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-07-16 00:22:19 ----SD---- C:\Windows\SYSWOW64\GWX
2015-07-16 00:22:19 ----D---- C:\Windows\PolicyDefinitions
2015-07-16 00:22:05 ----D---- C:\Windows\system32\wbem
2015-07-15 16:37:58 ----D---- C:\Program Files (x86)\Java
2015-07-15 16:37:17 ----D---- C:\Program Files\Java
2015-07-15 16:35:02 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-15 11:58:59 ----D---- C:\Program Files (x86)\FileZilla FTP Client
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2015-07-25 141416]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2014-07-02 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2015-03-02 922168]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2015-03-02 128592]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2010-11-20 59392]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2010-11-20 360832]
R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2014-04-24 450968]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-07-25 162528]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2015-03-10 44088]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\Windows\system32\drivers\LMIRfsDriver.sys [2011-09-16 72216]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-08-23 56320]
R3 lmimirr;lmimirr; C:\Windows\system32\DRIVERS\lmimirr.sys [2011-09-16 11552]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-07-24 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-07-03 47976]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 141440]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2015-03-02 156360]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2010-11-20 194944]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2010-11-20 95232]
S0 vmci;VMware VMCI Bus Driver; C:\Windows\system32\DRIVERS\vmci.sys []
S2 LMIInfo;LogMeIn Kernel Information Provider; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys []
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2013-04-18 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2013-06-28 36352]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-12-13 36720]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2011-11-04 117040]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\Windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-01-27 14464]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\Windows\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2015-07-25 461672]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2015-07-25 461672]
R2 Apache2.4;Apache2.4; C:\xampp\apache\bin\httpd.exe [2013-02-23 22016]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-01-07 43336]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2015-07-02 218816]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [2015-07-16 244392]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-07-24 1155216]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [2015-03-28 89840]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-12-13 194416]
R2 mysql;mysql; C:\xampp\mysql\bin\mysqld.exe [2013-05-16 8151040]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-07-24 1871504]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2015-07-24 5544592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-06-29 932040]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-07-15 76888]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [2007-06-05 177704]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-29 410952]
R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2014-04-25 3592120]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2015-07-25 887128]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2015-07-25 1213072]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-03 327296]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2015-03-14 72704]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe [2014-12-15 56648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-01-20 641352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-08 148136]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-05-18 1931632]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-07-24 838336]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-09-29 1255736]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-24 116648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2009-07-14 81920]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 118311
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Dvouklikem na soubor C:\Program Files\trend micro\Dana.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O18 - Protocol: WSIEChrome - (no CLSID) - (no file)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
ninja_girl
- Návštěvník
- Příspěvky: 106
- Registrován: 20 črc 2005 17:31
- Bydliště: Brno
Re: Zpomalený počítač
Hotovo, mám dát ještě jeden RSIT?
-
Rudy
- Site Admin
- Příspěvky: 118311
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Není třeba, pokud je vše v pořádku.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
ninja_girl
- Návštěvník
- Příspěvky: 106
- Registrován: 20 črc 2005 17:31
- Bydliště: Brno
Re: Zpomalený počítač
Díky rudy,
počítač teď jede svižněji.
Pěkný víkend!
počítač teď jede svižněji.
Pěkný víkend!
-
Rudy
- Site Admin
- Příspěvky: 118311
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený počítač
Hezký víkend i vám a nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?