Divný nález, prosím o kontrolu.

[nemo11]

Dobrý den, už zase otravuji, ale dnes při rychle kontrole MBAM mi našel vzorek s názvem opencandy. Může jít o falešnou detekci? Posílám log, děkuji za zkontrolování.

Logfile of random's system information tool 1.09 (written by random/random)
Run by SEETH at 2013-11-05 23:40:05
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 7 GB (12%) free of 63 GB
Total RAM: 4096 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:40:08, on 5.11.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal

Running processes:
D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe
C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe
D:\PROGRAMY\G15_TeamSpeak\G15_TeamSpeak.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
D:\PROGRAMY\iTUNES\iTunesHelper.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\SEETH.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\IPS\IPSBHO.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\coIEPlg.dll
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "D:\PROGRAMY\iTUNES\iTunesHelper.exe"
O4 - HKLM\..\Run: [EaseUS EPM tray] D:\PROGRAMY\EaseUS Partition Master 9.2.2\EaseUS Partition Master 9.2.2\bin\EpmNews.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Saitek DirectOutput (SaiDOutput) - Saitek - C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8033 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2f2c2731-63d9-4e25-8c42-323febc8122a -SystemEventPortName:HostProcess-f5b3393b-b2b4-45ba-8e3c-1e3987608fdd -IoCancelEventPortName:HostProcess-905b4e80-2df1-49e8-b1a5-7320b5c47b9c -NonStateChangingEventPortName:HostProcess-6234556b-f62a-40fb-bd6b-aa6239d369bb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:648932aa-9da3-4aac-84e4-bb83b1c1dac4 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c66ff414-f27b-4be5-8d80-26ef28adbdfd -SystemEventPortName:HostProcess-81f9c939-3b15-444c-812c-02e59d80f8c8 -IoCancelEventPortName:HostProcess-ce826990-a026-477f-8b90-51ec389cbfdf -NonStateChangingEventPortName:HostProcess-2a08ab8f-adeb-4ef8-a154-341b5a8eb39e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1b648a18-c6fe-4e99-bff3-695539c86799 -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-bcf8b622-e17b-49d7-98ef-2e44fe6ea6d5 -SystemEventPortName:HostProcess-380c0fcb-c7fa-4a32-b8e1-b5721019f6a1 -IoCancelEventPortName:HostProcess-4b9e1c01-f2db-4c99-bdee-d0d4ad9c6491 -NonStateChangingEventPortName:HostProcess-8214ede6-d93c-4630-8acf-7182e17f5806 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a96d3f75-5578-497b-917e-c3168659ff8b -DeviceGroupId:
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b6faf3f5-afc3-403f-ae5a-834e87cf5df5 -SystemEventPortName:HostProcess-976be6c3-95e8-45b4-83bd-9bbe02df8af7 -IoCancelEventPortName:HostProcess-2102a1d5-fe6d-4ac5-bffa-23bca016e63c -NonStateChangingEventPortName:HostProcess-0733d53c-9153-40d1-be1e-ba11eab0b147 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d899cfec-03ac-40e0-94ef-74fe21299bdc -DeviceGroupId:
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe" /s "NIS" /m "D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\diMaster.dll" /prefetch:1
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"taskhost.exe"
"D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe" /c /a /s UserSession2
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
WLIDSvcM.exe 1216
taskeng.exe {E27269EB-40C0-428A-B4C2-98AEA3BC2EAD}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Logitech\Gaming Software\LWEMon.exe" /noui
"C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe"
"C:\Program Files\Logitech\GamePanel Software\LCD Manager\lcdmon.exe"
"C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
"C:\Program Files\Saitek\SD6\Software\ProfilerU.exe"
"C:\Program Files\Saitek\SD6\Software\SaiMfd.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\Logitech\GamePanel Software\Applets\LCDCountdown.exe"
"C:\Program Files\Logitech\GamePanel Software\Applets\LCDPop3.exe"
"C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe"
"C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe"
"D:\PROGRAMY\G15_TeamSpeak\G15_TeamSpeak.exe"
"C:\Program Files\Windows Media Player\WMPSideShowGadget.exe"
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /SkipFUE /RemoteOCXLaunch
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"D:\PROGRAMY\iTUNES\iTunesHelper.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"taskhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4552.0.1571322155\184687285" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19,22 --gpu-vendor-id=0x10de --gpu-device-id=0x1200 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3165 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="4552.1.1518525236\582866036" /prefetch:673131151
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4552.2.739142903\515787940" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4552.3.2103823746\365832574" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4552.4.1617124422\1027162418" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4552.5.1376125031\705651887" /prefetch:673131151
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\SEETH\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2014.6.0.27_0\npcoplgn.dll" --lang=cs --channel="4552.6.881530099\1063766756" /prefetch:-390060480
"C:\Users\SEETH\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group2 pct:remainder use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_05/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4552.7.1691701442\745932311" /prefetch:673131151
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2827445951-1758643074-319110142-10013_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2827445951-1758643074-319110142-10013 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"D:\Stažené soubory\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\SEETH\AppData\Roaming\Mozilla\Firefox\Profiles\wt2dwkkx.default

prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
prefs.js - "extensions.enabledItems" - "{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.13"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=D:\PROGRAMY\iTUNES\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.3.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=D:\PROGRAMY\Adobe rider\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

D:\PROGRAMY\Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

D:\PROGRAMY\Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

D:\PROGRAMY\Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

D:\PROGRAMY\Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\SEETH\AppData\Roaming\Mozilla\Firefox\Profiles\wt2dwkkx.default\extensions\
cs@dictionaries.addons.mozilla.org
{e001c731-5e37-4538-a5cb-8168736a2360}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - D:\PROGRAMY\NortonInternetSecurity2012\Engine64\21.1.0.18\coIEPlg.dll [2013-10-06 769360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\coIEPlg.dll [2013-10-06 526672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\IPS\IPSBHO.DLL [2013-09-29 388504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - D:\PROGRAMY\NortonInternetSecurity2012\Engine64\21.1.0.18\coIEPlg.dll [2013-10-06 769360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\coIEPlg.dll [2013-10-06 526672]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-12-08 9642528]
"Start WingMan Profiler"=C:\Program Files\Logitech\Gaming Software\LWEMon.exe [2009-09-16 190472]
"Launch LgDeviceAgent"=C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [2010-08-03 415816]
"Launch LCDMon"=C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2010-08-03 2412616]
"Launch LGDCore"=C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [2010-08-03 4725320]
"ProfilerU"=C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [2010-07-29 310272]
"SaiMfd"=C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [2010-07-29 158208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"iTunesHelper"=D:\PROGRAMY\iTUNES\iTunesHelper.exe [2013-10-23 152392]
"EaseUS EPM tray"=D:\PROGRAMY\EaseUS Partition Master 9.2.2\EaseUS Partition Master 9.2.2\bin\EpmNews.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x00000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux1"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-11-05 23:38:25 ----D---- C:\rsit
2013-11-04 12:26:32 ----A---- C:\Windows\BcdLog.txt
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-10-28 18:55:58 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\nvopencl.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\nvoglv64.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\nvoglshim64.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\nvhdagenco64.dll
2013-10-28 18:55:58 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-10-28 18:55:57 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvinitx.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\NvIFR64.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\NvFBC64.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvdispgenco6433165.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvdispco6433165.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvcuvid.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvcuda.dll
2013-10-28 18:55:57 ----A---- C:\Windows\system32\nvcompiler.dll
2013-10-26 21:00:02 ----D---- C:\Program Files\iPod
2013-10-26 20:59:59 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-26 20:59:59 ----D---- C:\Program Files\iTunes
2013-10-26 17:08:12 ----HD---- C:\SkyDriveTemp
2013-10-24 21:45:06 ----D---- C:\AdwCleaner
2013-10-24 13:17:28 ----A---- C:\Windows\system32\nvdispgenco6433158.dll
2013-10-24 13:17:28 ----A---- C:\Windows\system32\nvdispco6433158.dll
2013-10-23 03:02:36 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2013-10-16 15:02:17 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-10-16 15:02:11 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-10-16 15:02:11 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-10-16 15:02:11 ----A---- C:\Windows\SYSWOW64\java.exe
2013-10-09 23:15:00 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-10-09 23:14:59 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-10-09 23:14:58 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 23:14:58 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 23:14:58 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 23:14:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-10-09 23:14:57 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 23:14:56 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-10-09 23:14:56 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 23:14:56 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 23:14:55 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-10-09 23:14:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-10-09 23:14:54 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 23:14:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-10-09 23:14:53 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-10-09 23:14:53 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 23:14:52 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-10-09 23:14:52 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 23:14:51 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 23:14:49 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 23:14:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-10-09 12:35:39 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2013-10-09 12:35:39 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\lpk.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-10-09 12:35:38 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 12:35:38 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 12:35:37 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 12:35:36 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 12:35:35 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-10-09 12:35:35 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 12:35:35 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 12:35:35 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 12:35:34 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2013-10-09 12:35:34 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2013-10-09 12:35:34 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 12:35:34 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 12:35:34 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 12:35:32 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-10-09 12:35:32 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-10-09 12:35:32 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 12:35:32 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 12:35:32 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\user.exe
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\tdh.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-10-09 12:35:31 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2013-10-09 12:35:31 ----A---- C:\Windows\system32\wow64.dll
2013-10-09 12:35:31 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 12:35:28 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 12:35:28 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 12:35:28 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-09 12:35:26 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-08 21:50:17 ----A---- C:\Windows\system32\nvdispgenco6433140.dll
2013-10-08 21:50:17 ----A---- C:\Windows\system32\nvdispco6433140.dll
2013-10-08 21:08:31 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-10-08 21:07:57 ----D---- C:\ProgramData\Package Cache

======List of files/folders modified in the last 1 month======

2013-11-05 23:40:08 ----D---- C:\Program Files\trend micro
2013-11-05 23:39:55 ----D---- C:\Windows\Prefetch
2013-11-05 23:39:05 ----D---- C:\Windows\Temp
2013-11-05 23:38:51 ----D---- C:\Windows\system32\config
2013-11-05 23:37:15 ----SHD---- C:\System Volume Information
2013-11-05 23:35:35 ----D---- C:\ProgramData\NVIDIA
2013-11-04 21:45:54 ----D---- C:\Windows\SysWOW64
2013-11-04 13:05:30 ----D---- C:\Windows\System32
2013-11-04 12:37:29 ----D---- C:\Windows\inf
2013-11-04 12:26:32 ----D---- C:\Windows
2013-11-03 17:46:47 ----D---- C:\Windows\Tasks
2013-11-03 01:29:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-02 22:06:05 ----SD---- C:\Users\SEETH\AppData\Roaming\Microsoft
2013-10-28 19:25:51 ----D---- C:\Windows\system32\drivers
2013-10-28 19:25:50 ----D---- C:\Windows\system32\DriverStore
2013-10-28 19:25:50 ----D---- C:\Windows\system32\catroot
2013-10-28 19:25:49 ----D---- C:\Program Files\NVIDIA Corporation
2013-10-28 19:25:49 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-10-28 19:25:48 ----RD---- C:\Users
2013-10-28 19:25:43 ----D---- C:\ProgramData\NVIDIA Corporation
2013-10-28 19:25:42 ----RSD---- C:\Windows\assembly
2013-10-28 18:57:02 ----D---- C:\Windows\system32\catroot2
2013-10-26 21:01:06 ----SHD---- C:\Windows\Installer
2013-10-26 21:00:02 ----RD---- C:\Program Files
2013-10-26 20:59:59 ----HD---- C:\ProgramData
2013-10-25 22:27:44 ----D---- C:\Users\SEETH\AppData\Roaming\vlc
2013-10-23 11:30:23 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\OpenCL.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\nvumdshimx.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-10-23 11:30:23 ----A---- C:\Windows\system32\nvapi64.dll
2013-10-23 09:20:08 ----A---- C:\Windows\system32\nvcpl.dll
2013-10-23 09:20:07 ----A---- C:\Windows\system32\nvsvc64.dll
2013-10-23 09:20:05 ----A---- C:\Windows\system32\nvvsvc.exe
2013-10-23 09:20:05 ----A---- C:\Windows\system32\nvsvcr.dll
2013-10-23 09:20:05 ----A---- C:\Windows\system32\nvshext.dll
2013-10-23 09:20:05 ----A---- C:\Windows\system32\nvmctray.dll
2013-10-21 19:12:16 ----D---- C:\ProgramData\Norton
2013-10-21 19:12:05 ----D---- C:\Windows\system32\Tasks
2013-10-21 19:11:43 ----D---- C:\Windows\system32\drivers\NISx64
2013-10-16 22:40:48 ----D---- C:\Windows\Panther
2013-10-16 22:40:48 ----D---- C:\Windows\debug
2013-10-16 15:02:22 ----D---- C:\ProgramData\Oracle
2013-10-16 15:02:11 ----D---- C:\Program Files (x86)\Java
2013-10-15 19:53:06 ----D---- C:\Windows\system32\NDF
2013-10-15 16:28:45 ----D---- C:\Program Files (x86)\Rockstar Games
2013-10-13 16:03:27 ----D---- C:\Windows\rescache
2013-10-11 20:18:29 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-10-10 14:56:00 ----D---- C:\Windows\Microsoft.NET
2013-10-10 11:28:24 ----D---- C:\Windows\winsxs
2013-10-10 11:25:49 ----D---- C:\Program Files\Internet Explorer
2013-10-10 11:25:49 ----D---- C:\Program Files (x86)\Internet Explorer
2013-10-10 11:25:47 ----D---- C:\Windows\system32\cs-CZ
2013-10-10 11:25:47 ----D---- C:\Windows\AppPatch
2013-10-10 11:25:02 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-10 11:25:02 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 23:12:42 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-10-09 23:06:17 ----D---- C:\Windows\system32\MRT
2013-10-09 23:04:36 ----A---- C:\Windows\system32\MRT.exe
2013-10-09 22:56:47 ----D---- C:\Windows\Logs
2013-10-09 19:06:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-10-09 12:14:51 ----RD---- C:\Program Files (x86)
2013-10-08 22:56:58 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-10-08 21:16:24 ----D---- C:\ProgramData\Origin
2013-10-07 12:28:08 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-10-07 12:26:29 ----D---- C:\Windows\SYSWOW64\en-US
2013-10-07 12:26:29 ----D---- C:\Windows\system32\en-US

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-11-12 530488]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1501000.012\SYMDS64.SYS [2013-09-10 493656]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1501000.012\SYMEFA64.SYS [2013-09-27 1147480]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AmgHips;AmgHips; \??\C:\Windows\System32\Drivers\AmgHips.sys [2011-11-01 31008]
R1 BHDrvx64;BHDrvx64; \??\D:\PROGRAMY\NortonInternetSecurity2012\NortonData\21.1.0.18\Definitions\BASHDefs\20131022.001\BHDrvx64.sys [2013-10-23 1524824]
R1 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1501000.012\ccSetx64.sys [2013-09-26 162392]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2013-10-21 484952]
R1 IDSVia64;IDSVia64; \??\D:\PROGRAMY\NortonInternetSecurity2012\NortonData\21.1.0.18\Definitions\IPSDefs\20131101.001\IDSvia64.sys [2013-10-28 521816]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1501000.012\SRTSPX64.SYS [2013-09-10 36952]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1501000.012\Ironx64.SYS [2013-09-27 264280]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1501000.012\SYMNETS.SYS [2013-09-26 590936]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-11-04 140376]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-12-08 2223392]
R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-23 22408]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-23 16008]
R3 NAVENG;NAVENG; \??\D:\PROGRAMY\NortonInternetSecurity2012\NortonData\21.1.0.18\Definitions\VirusDefs\20131105.002\ENG64.SYS [2013-11-01 126040]
R3 NAVEX15;NAVEX15; \??\D:\PROGRAMY\NortonInternetSecurity2012\NortonData\21.1.0.18\Definitions\VirusDefs\20131105.002\EX64.SYS [2013-11-01 2099288]
R3 npusbio;npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [2012-07-09 38400]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-06-16 196384]
R3 SaiMini;SaiMini; C:\Windows\system32\DRIVERS\SaiMini.sys [2010-08-10 22792]
R3 SaiNtBus;SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [2010-08-10 50056]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1501000.012\SRTSP64.SYS [2013-09-27 858200]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2013-10-21 177752]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2009-09-11 26248]
R3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2009-09-11 15880]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2009-09-11 76552]
R3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-13 73984]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2010-12-21 36328]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2010-09-15 20552]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-11-10 56336]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-11-10 58384]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 SaiH0762;SaiH0762; C:\Windows\system32\DRIVERS\SaiH0762.sys [2008-04-04 178560]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-06-02 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-06-02 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-06-02 177640]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-12-21 136264]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-12-21 19016]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-12-21 172104]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2011-01-04 16392]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2009-09-11 41096]
S3 WmHidLo;Logitech Gaming USB Filter Driver; C:\Windows\system32\drivers\WmHidLo.sys [2009-09-11 36872]
S4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NIS;Norton Internet Security; D:\PROGRAMY\NortonInternetSecurity2012\Engine\21.1.0.18\NIS.exe [2013-10-08 275696]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-23 922912]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-10-08 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-10-23 414496]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-10-23 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-05-15 1044816]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SaiDOutput;Saitek DirectOutput; C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe [2008-04-04 241152]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-10-30 566696]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-09 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Roli]

Zdravím, přes Odebrat programy odinstaluj Pando Media Booster


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Pak bych rád zkouknul ten log z Mbam.

[nemo11]

Pando Media Booster nemohu najít v seznamu nainstalovaných programů. Zde je jinak log, prosím nezlobte se, že jsem to již smazal, protože původně jsem zde nechtěl otravovat, na konec mi to ale nedalo. Co se CCleaneru týká, tak ten používám pravidelně jednou týdně.

Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org

Verze: v2013.11.05.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
SEETH :: SEETH-PC [administrátor]

5.11.2013 23:20:22
mbam-log-2013-11-05 (23-20-22).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 266252
Uplynulý čas: 3 minut, 25 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 1
C:\Users\SEETH\AppData\Local\Temp\is-FUCTF.tmp\OCSetupHlp.dll (PUP.Optional.OpenCandy) -> Přesun do karantény a smazání se zdařilo.

(konec)

[Roli]

Pando Media Booster nemohu najít v seznamu nainstalovaných programů.

Ale měl by tam být, možná má jen jiný název :

C:\Program Files (x86)\Pando Networks

Zde je jinak log, prosím nezlobte se, že jsem to již smazal, protože původně jsem zde nechtěl otravovat, na konec mi to ale nedalo.

Já se nezlobím.


Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.

[nemo11]

Zde je log

# AdwCleaner v3.011 - Report created 08/11/2013 at 14:23:40
# Updated 03/11/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : SEETH - SEETH-PC
# Running from : D:\Stažené soubory\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Mozilla Firefox v14.0.1 (cs)

[ File : C:\Users\SEETH\AppData\Roaming\Mozilla\Firefox\Profiles\wt2dwkkx.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\SEETH\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1336 octets] - [24/10/2013 21:45:09]
AdwCleaner[R1].txt - [1093 octets] - [05/11/2013 23:33:17]
AdwCleaner[R2].txt - [856 octets] - [08/11/2013 14:23:40]
AdwCleaner[S0].txt - [1407 octets] - [24/10/2013 21:46:02]
AdwCleaner[S1].txt - [1159 octets] - [05/11/2013 23:34:18]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1035 octets] ##########

[Roli]

Nic čisto, jaký je stav PC ?

[nemo11]

PC se chová normálně. Takže pokud je vše v pořádku, tak velmi děkuji za pomoc.

[Roli]

......... Takže pokud je vše v pořádku .......

Ano je.

....... tak velmi děkuji za pomoc.

Není zač a