Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

conhost

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
MrDedek
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 28 črc 2014 16:09

conhost

#1 Příspěvek od MrDedek »

PC začalo tuhnout a ve správci jsem našel asi 20 x spuštěný conhost, nešlo s PC nic jiného než restart natvrdo

Log dnes :
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119544
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: conhost

#2 Příspěvek od Rudy »

Zdravím!
Žádý log nevidím.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
MrDedek
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 28 črc 2014 16:09

Re: conhost

#3 Příspěvek od MrDedek »

Tak už vím, nepovedlo se vložit, bo jsem přehlédl hlášku soubory txt nelze jako přílohu
Tak tady a děkuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepa at 2014-07-29 16:03:12
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 31 GB (27%) free of 114 GB
Total RAM: 16333 MB (85% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:03:16, on 29.7.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17207)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
D:\Instalovane programy\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\..\core\PDApp.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\Adobe Application Manager (Updater).exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Pepa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll
O4 - HKLM\..\Run: [Sound Blaster Cinema 2] "C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKLM\..\Run: [Fast Boot] C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\StartLiveUpdate.exe /REMINDER
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Command Center] C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [NETGEARGenie] "C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "D:\INSTALOVANE PROGRAMY\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: Killer Network Manager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} (20-20 3D Viewer for IKEA) - http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ECOSERVICE - Unknown owner - C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSIBIOSData_CC - MSI - C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe
O23 - Service: MSIClock_CC - MSI - C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe
O23 - Service: MSICOMM_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\MSICommService.exe
O23 - Service: MSICPU_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe
O23 - Service: MSICTL_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
O23 - Service: MSIDDR_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
O23 - Service: MSISMB_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe
O23 - Service: MSISuperIO_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe
O23 - Service: MSI_FastBoot - MSI - C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
O23 - Service: MSI_LiveUpdate_Service - Micro-Star International - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: NETGEARGenieDaemon - NETGEAR - C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SuperRAIDSvc - Unknown owner - C:\MSI\Smart Utilities\SuperRAIDSvc.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) - Intel(R) Corporation - C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe

--
End of file - 13113 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe"
"C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe"
"C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe"
"C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe"
"C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe"
"C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\MSI\Smart Utilities\SuperRAIDSvc.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
"C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe" -minimize
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe"
"C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe"
/REMINDER
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\diMaster.dll" /prefetch:1
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe" /c /a /s UserSession
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe" /c /a /s UserSession
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "937762946856332290-1304463810-2015315797-17811120371760804616-18985462521398796432
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"taskhost.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect
"D:\Instalovane programy\Photo Studio 16\Program32\ZPSTray.exe"
"C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe" -minimize
"C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
genie2_tray.exe -start _NETGEARGenieTray_{61716cdd-ab34-4db0-af63-3d18e6dcff5f}_0_
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
C:\Windows\splwow64.exe 8192
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\..\core\PDApp.exe --appletID=UWA_UI --appletVersion=1.0 --mode=Notifier
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\Adobe Application Manager (Updater).exe" "-mode=productupdate" "-appDataDir=C:\Users\Pepa\AppData\Local\Adobe\AAMUpdater\1.0" "-deploymentEnginePath=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\..\core\..\DWA\Setup.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:6696 CREDAT:267521 /prefetch:2
"C:\Windows\System32\MsSpellCheckingFacility.exe" -Embedding
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:6696 CREDAT:2299218 /prefetch:2
"C:\TotalComander\TOTALCMD64.EXE"
"D:\NOVE Stahuj\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll [2014-06-26 917344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll [2014-06-26 654688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL [2014-02-21 392344]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll [2014-06-26 917344]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll [2014-06-26 654688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-03-04 7543000]
"MBCfg64"=C:\Windows\system32\MBCfg64.dll [2014-02-21 41088]
"ISCT Tray"=C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-02-21 5860656]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064]
"NETGEARGenie"=C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [2014-06-11 596480]
"Zoner Photo Studio Autoupdate"=D:\INSTALOVANE PROGRAMY\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema 2"=C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [2014-02-24 1440768]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-21 292848]
"Super Charger"=C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [2014-04-08 1047536]
"Fast Boot"=C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [2012-09-19 764472]
"Live Update"=C:\Program Files (x86)\MSI\Live Update\StartLiveUpdate.exe [2014-03-28 579056]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"Command Center"=C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [2014-06-06 796328]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Killer Network Manager.lnk - C:\Windows\Installer\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-07-29 16:03:11 ----D---- C:\rsit
2014-07-28 18:30:30 ----A---- C:\Windows\wininit.ini
2014-07-28 17:50:49 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-07-28 17:50:47 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-07-28 17:03:14 ----D---- C:\Program Files\trend micro
2014-07-27 11:55:15 ----D---- C:\Windows\SYSWOW64\20-20 Technologies
2014-07-27 08:27:26 ----D---- C:\Users\Pepa\AppData\Roaming\Adobe Mini Bridge CS5
2014-07-27 08:27:25 ----D---- C:\Users\Pepa\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-07-27 08:21:33 ----D---- C:\Program Files\Adobe
2014-07-26 16:20:59 ----D---- C:\Program Files\GIMP 2
2014-07-25 20:07:54 ----D---- C:\Users\Pepa\AppData\Roaming\Lavasoft
2014-07-25 19:24:34 ----D---- C:\Users\Pepa\AppData\Roaming\LavasoftStatistics
2014-07-25 19:24:15 ----D---- C:\Program Files\Lavasoft
2014-07-25 19:23:02 ----D---- C:\ProgramData\Lavasoft
2014-07-25 18:47:00 ----D---- C:\NPE
2014-07-25 18:17:55 ----RA---- C:\Windows\system32\drivers\SymIMV.sys
2014-07-14 17:59:13 ----D---- C:\Users\Pepa\AppData\Roaming\NVIDIA
2014-07-14 17:42:11 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-07-14 17:41:40 ----D---- C:\Program Files\Common Files\Adobe
2014-07-09 19:29:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-07-09 13:53:09 ----A---- C:\Windows\system32\aepdu.dll
2014-07-09 13:53:09 ----A---- C:\Windows\system32\aeinv.dll
2014-07-09 13:53:07 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-07-09 13:53:07 ----A---- C:\Windows\system32\win32k.sys
2014-07-09 13:53:07 ----A---- C:\Windows\system32\osk.exe
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\wdigest.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\TSpkg.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\schannel.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\qedit.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\ncrypt.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\msv1_0.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\kerberos.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-09 13:52:49 ----A---- C:\Windows\system32\credssp.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-07-09 13:52:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 13:52:48 ----A---- C:\Windows\system32\iernonce.dll
2014-07-09 13:52:48 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-07-09 13:52:48 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-07-09 13:52:47 ----A---- C:\Windows\system32\urlmon.dll
2014-07-09 13:52:47 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-09 13:52:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-07-09 13:52:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-07-09 13:52:47 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-07-09 13:52:46 ----A---- C:\Windows\system32\jsproxy.dll
2014-07-09 13:52:46 ----A---- C:\Windows\system32\iesetup.dll
2014-07-09 13:52:46 ----A---- C:\Windows\system32\iertutil.dll
2014-07-09 13:52:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-09 13:52:45 ----A---- C:\Windows\system32\vbscript.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\jscript9diag.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\jscript9.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\ieUnatt.exe
2014-07-09 13:52:45 ----A---- C:\Windows\system32\ieui.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\ieframe.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-09 13:52:44 ----A---- C:\Windows\system32\wininet.dll
2014-07-09 13:52:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-09 13:52:44 ----A---- C:\Windows\system32\msrating.dll
2014-07-09 13:52:44 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-07-09 13:52:44 ----A---- C:\Windows\system32\mshtml.dll
2014-07-09 13:52:07 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-07-09 13:52:07 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-07-09 13:52:07 ----A---- C:\Windows\system32\lsasrv.dll
2014-07-06 07:37:06 ----D---- C:\Users\Pepa\AppData\Roaming\Nero
2014-07-06 07:35:55 ----A---- C:\Windows\Irremote.ini
2014-07-06 07:33:30 ----D---- C:\ProgramData\Nero
2014-07-02 18:15:25 ----RA---- C:\Windows\SYSWOW64\nvspcap.dll
2014-07-02 18:15:25 ----RA---- C:\Windows\system32\nvspcap64.dll
2014-07-02 18:15:20 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-07-02 18:15:20 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-07-02 18:15:20 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-07-02 18:15:03 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-07-02 18:15:00 ----A---- C:\Windows\system32\nvhdap64.dll
2014-07-02 18:15:00 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2014-07-02 18:14:49 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-07-02 18:14:49 ----A---- C:\Windows\system32\OpenCL.dll
2014-07-02 18:14:37 ----A---- C:\Windows\system32\nvdispgenco6433489.dll
2014-07-02 18:14:37 ----A---- C:\Windows\system32\nvdispco6433489.dll
2014-07-02 18:13:35 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-07-02 18:13:34 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-07-02 18:13:34 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-07-02 18:13:34 ----A---- C:\Windows\system32\nvopencl.dll
2014-07-02 18:13:33 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-07-02 18:13:32 ----A---- C:\Windows\system32\nvoglv64.dll
2014-07-02 18:13:31 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-07-02 18:13:31 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-07-02 18:13:31 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-07-02 18:13:30 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-07-02 18:13:30 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2014-07-02 18:13:30 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-07-02 18:13:30 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-07-02 18:13:30 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2014-07-02 18:13:30 ----A---- C:\Windows\system32\nvinitx.dll
2014-07-02 18:13:30 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2014-07-02 18:13:30 ----A---- C:\Windows\system32\NvIFR64.dll
2014-07-02 18:13:30 ----A---- C:\Windows\system32\NvFBC64.dll
2014-07-02 18:13:30 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2014-07-02 18:13:30 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-07-02 18:13:29 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-07-02 18:13:28 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-07-02 18:13:28 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-07-02 18:13:28 ----A---- C:\Windows\system32\nvcuvid.dll
2014-07-02 18:13:27 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-07-02 18:13:27 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-07-02 18:13:27 ----A---- C:\Windows\system32\nvcuda.dll
2014-07-02 18:13:26 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-07-02 18:13:11 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-07-02 18:13:08 ----A---- C:\Windows\system32\nvcompiler.dll
2014-07-02 18:13:07 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-07-02 18:10:14 ----D---- C:\ProgramData\NVIDIA
2014-07-02 17:50:54 ----A---- C:\Windows\system32\nvvsvc.exe
2014-07-02 17:50:54 ----A---- C:\Windows\system32\nvsvcr.dll
2014-07-02 17:50:54 ----A---- C:\Windows\system32\nvsvc64.dll
2014-07-02 17:50:54 ----A---- C:\Windows\system32\nvshext.dll
2014-07-02 17:50:54 ----A---- C:\Windows\system32\nvmctray.dll
2014-07-02 17:50:54 ----A---- C:\Windows\system32\nvcpl.dll
2014-07-02 17:21:00 ----D---- C:\Program Files\Microsoft IntelliPoint

======List of files/folders modified in the last 1 month======

2014-07-29 16:03:13 ----D---- C:\Windows\Temp
2014-07-29 15:53:16 ----D---- C:\Windows\System32
2014-07-29 15:53:16 ----D---- C:\Windows\inf
2014-07-29 15:53:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-07-29 15:50:31 ----SHD---- C:\System Volume Information
2014-07-29 15:49:29 ----D---- C:\Windows\system32\config
2014-07-29 15:46:20 ----D---- C:\Windows
2014-07-28 18:41:46 ----D---- C:\Windows\system32\Tasks
2014-07-28 18:30:31 ----SD---- C:\ProgramData\Microsoft
2014-07-28 17:50:49 ----HD---- C:\ProgramData
2014-07-28 17:50:47 ----RD---- C:\Program Files (x86)
2014-07-28 17:03:14 ----RD---- C:\Program Files
2014-07-28 16:52:54 ----D---- C:\Windows\system32\drivers
2014-07-27 11:55:15 ----D---- C:\Windows\SysWOW64
2014-07-27 11:55:15 ----D---- C:\Windows\Downloaded Program Files
2014-07-27 10:56:52 ----RSD---- C:\Windows\Fonts
2014-07-27 10:44:31 ----SHD---- C:\Windows\Installer
2014-07-27 08:21:29 ----D---- C:\Program Files (x86)\Adobe
2014-07-27 08:21:14 ----D---- C:\ProgramData\Adobe
2014-07-27 08:20:44 ----D---- C:\Users\Pepa\AppData\Roaming\Adobe
2014-07-27 08:20:35 ----D---- C:\Program Files (x86)\Common Files
2014-07-27 06:54:06 ----D---- C:\Windows\system32\catroot2
2014-07-26 10:12:47 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-25 20:21:08 ----D---- C:\Windows\Logs
2014-07-25 20:21:08 ----D---- C:\Windows\debug
2014-07-25 20:18:49 ----D---- C:\Program Files\Common Files
2014-07-25 18:47:51 ----D---- C:\Windows\system32\NDF
2014-07-25 18:45:40 ----D---- C:\ProgramData\Norton
2014-07-25 18:17:55 ----D---- C:\Windows\system32\DriverStore
2014-07-25 18:17:55 ----D---- C:\Windows\system32\catroot
2014-07-25 16:17:05 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-25 16:17:05 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-18 15:53:59 ----D---- C:\Windows\system32\drivers\NISx64
2014-07-14 17:41:11 ----D---- C:\Windows\winsxs
2014-07-11 18:15:05 ----D---- C:\Windows\rescache
2014-07-10 16:37:42 ----SD---- C:\Windows\system32\CompatTel
2014-07-10 16:37:42 ----D---- C:\Windows\SYSWOW64\en-US
2014-07-10 16:37:42 ----D---- C:\Windows\SYSWOW64\Dism
2014-07-10 16:37:42 ----D---- C:\Windows\system32\Dism
2014-07-10 16:37:42 ----D---- C:\Windows\system32\cs-CZ
2014-07-10 16:37:42 ----D---- C:\Windows\ehome
2014-07-10 16:37:42 ----D---- C:\Program Files\Windows Journal
2014-07-10 16:37:42 ----D---- C:\Program Files\Internet Explorer
2014-07-10 16:37:41 ----D---- C:\Windows\system32\en-US
2014-07-09 20:51:40 ----D---- C:\ProgramData\Microsoft Help
2014-07-09 20:51:07 ----D---- C:\Windows\system32\MRT
2014-07-09 20:50:22 ----A---- C:\Windows\system32\MRT.exe
2014-07-09 19:29:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-07-06 17:44:31 ----SD---- C:\Users\Pepa\AppData\Roaming\Microsoft
2014-07-02 18:16:18 ----D---- C:\ProgramData\NVIDIA Corporation
2014-07-02 18:15:25 ----D---- C:\Program Files\NVIDIA Corporation
2014-07-02 18:15:25 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-07-02 18:15:24 ----D---- C:\Windows\Microsoft.NET
2014-07-02 18:14:00 ----RD---- C:\Users
2014-07-02 17:50:54 ----D---- C:\Windows\Help
2014-07-02 17:50:49 ----D---- C:\temp
2014-07-02 17:20:59 ----D---- C:\Program Files\Common Files\Microsoft Shared

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-02-21 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 BfLwf;Qualcomm Atheros Bandwidth Control; C:\Windows\system32\DRIVERS\bflwfx64.sys [2013-11-08 80080]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2013-09-10 78936]
R2 iocbios2;iocbios2; \??\C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [2014-02-18 28912]
R2 NPF;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2014-06-20 35344]
R3 AcpiCtlDrv;AcpiCtlDrv; C:\Windows\system32\DRIVERS\AcpiCtlDrv.sys [2012-07-17 25880]
R3 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [2014-06-06 1530160]
R3 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [2013-09-26 162392]
R3 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2014-06-14 486192]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-06-14 142128]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2013-08-13 27608]
R3 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140725.001\IDSvia64.sys [2014-06-13 525016]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2014-02-03 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2014-02-03 22728]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2014-02-03 23936]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-04 3882456]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\DRIVERS\ISCTD.sys [2014-02-03 44744]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-21 370672]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-21 791024]
R3 Ke2200;NDIS Miniport Driver for the Killer e2200 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\e22w7x64.sys [2013-03-20 154320]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-02-19 116736]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140728.003\ENG64.SYS [2014-06-14 126040]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140728.003\EX64.SYS [2014-06-14 2099288]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [2012-10-25 13368]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [2010-10-22 14136]
R3 NTIOLib_ECO;NTIOLib_ECO; \??\C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys [2014-01-06 13808]
R3 NTIOLib_MSI_RAID;NTIOLib_MSI_RAID; \??\C:\MSI\Smart Utilities\NTIOLib_X64.sys [2014-03-17 13808]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [2014-02-13 875736]
R3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [2013-09-10 36952]
R3 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1504000.00D\SYMDS64.SYS [2013-09-10 493656]
R3 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [2014-03-04 1148120]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2014-06-15 177752]
R3 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [2013-09-27 264280]
R3 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [2014-02-18 593112]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-04-11 110336]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\SysWOW64\FsUsbExDisk.SYS [2014-04-30 37344]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys []
S3 NTIOLib_MB;NTIOLib_MB; \??\C:\Program Files (x86)\MSI\MSI Gaming APP\Lib\NTIOLib_X64.sys [2014-03-13 13808]
S3 NTIOLib_MSIClock_CC;NTIOLib_MSIClock_CC; \??\C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSICOMM_CC;NTIOLib_MSICOMM_CC; \??\C:\Program Files (x86)\MSI\Command Center\NTIOLib_X64.sys [2012-11-19 13368]
S3 NTIOLib_MSICPU_CC;NTIOLib_MSICPU_CC; \??\C:\Program Files (x86)\MSI\Command Center\CPU\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSIDDR_CC;NTIOLib_MSIDDR_CC; \??\C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [2012-11-26 13368]
S3 NTIOLib_MSIFrequency_CC;NTIOLib_MSIFrequency_CC; \??\C:\Program Files (x86)\MSI\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSIRatio_CC;NTIOLib_MSIRatio_CC; \??\C:\Program Files (x86)\MSI\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC; \??\C:\Program Files (x86)\MSI\Command Center\SMBus\NTIOLib_X64.sys [2012-11-19 13368]
S3 NTIOLib_MSISuperIO_CC;NTIOLib_MSISuperIO_CC; \??\C:\Program Files (x86)\MSI\Command Center\SuperIO\NTIOLib_X64.sys [2012-11-19 13368]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-04-11 206080]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ECOSERVICE;ECOSERVICE; C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe [2014-04-10 2126448]
R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [2014-03-13 20512]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-02-21 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-02-19 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-02-19 398296]
R2 MSI_FastBoot;MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [2012-10-26 103992]
R2 MSI_LiveUpdate_Service;MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2014-03-27 83952]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [2014-03-17 162800]
R2 MSICTL_CC;MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2014-06-03 1990144]
R2 NETGEARGenieDaemon;NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [2014-03-24 225792]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [2014-06-27 276376]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-02-08 923936]
R2 Qualcomm Atheros Killer Service V2;Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [2014-01-22 344576]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-02-08 411936]
R2 SuperRAIDSvc;SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [2014-04-03 24048]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-03-04 171480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-15 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-15 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-06-19 111616]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 MSIBIOSData_CC;MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2014-06-04 2100736]
S3 MSIClock_CC;MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [2014-06-06 4026368]
S3 MSICOMM_CC;MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2014-06-03 2118144]
S3 MSICPU_CC;MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [2014-06-17 4157440]
S3 MSIDDR_CC;MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2014-06-06 2250240]
S3 MSISMB_CC;MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2014-06-04 2063360]
S3 MSISuperIO_CC;MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2014-06-10 549888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-06-15 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119544
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: conhost

#4 Příspěvek od Rudy »

Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
MrDedek
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 28 črc 2014 16:09

Re: conhost

#5 Příspěvek od MrDedek »

legál win 7 ultimate zakoupená přes Alza.cz , krabicová verze (není to OM), aktivace, bez problémů
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119544
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: conhost

#6 Příspěvek od Rudy »

OK. Udělejte nejprve kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
MrDedek
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 28 črc 2014 16:09

Re: conhost

#7 Příspěvek od MrDedek »

Provedeno :
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 31.7.2014
Čas skenování: 17:17:21
Protokol: scaner02.txt
Správce: Ano

Verze: 2.00.2.1012
Databáze malwaru: v2014.07.31.05
Databáze rootkitů: v2014.07.17.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Self-protection: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Pepa

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 481607
Uplynulý čas: 25 min, 26 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristics: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 0
(No malicious items detected)

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 0
(No malicious items detected)

Soubory: 0
(No malicious items detected)

Fyzické sektory: 0
(No malicious items detected)


(end)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119544
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: conhost

#8 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
MrDedek
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 28 črc 2014 16:09

Re: conhost

#9 Příspěvek od MrDedek »

Hotovo dle pokynů


All processes killed
========== FILES ==========
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 41620 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Jitka
->Temp folder emptied: 2645176 bytes
->Temporary Internet Files folder emptied: 297390544 bytes
->Google Chrome cache emptied: 7429286 bytes
->Flash cache emptied: 1581 bytes

User: Pepa
->Temp folder emptied: 19727304 bytes
->Temporary Internet Files folder emptied: 190734945 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 2989 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 164871 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 18453615 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 55293774 bytes
RecycleBin emptied: 470 bytes

Total Files Cleaned = 564,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Jitka
->Flash cache emptied: 0 bytes

User: Pepa
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb




OTM by OldTimer - Version 3.1.21.0 log created on 08012014_162820

Files moved on Reboot...
C:\Users\Jitka\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Jitka\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Users\Pepa\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File C:\Users\Pepa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VFDMIVLQ\afr[1].htm not found!
File C:\Users\Pepa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VFDMIVLQ\afr[2].htm not found!
File C:\Users\Pepa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\HXLQLE11\viewtopic[1].htm not found!
C:\Users\Pepa\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Windows\temp\~DF95556CD8B8FB139D.TMP moved successfully.
C:\Windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

Registry entries deleted on Reboot...
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119544
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: conhost

#10 Příspěvek od Rudy »

Ještě poprosím o nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
MrDedek
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 28 črc 2014 16:09

Re: conhost

#11 Příspěvek od MrDedek »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepa at 2014-08-02 08:46:16
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 28 GB (24%) free of 114 GB
Total RAM: 16333 MB (85% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:46:22, on 2.8.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17207)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
D:\Instalovane programy\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
C:\Program Files\trend micro\Pepa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll
O4 - HKLM\..\Run: [Sound Blaster Cinema 2] "C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKLM\..\Run: [Fast Boot] C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\StartLiveUpdate.exe /REMINDER
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Command Center] C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [NETGEARGenie] "C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "D:\INSTALOVANE PROGRAMY\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: Killer Network Manager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} (20-20 3D Viewer for IKEA) - http://kitchenplanner.ikea.com/CZ/Core/ ... _Win32.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ECOSERVICE - Unknown owner - C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSIBIOSData_CC - MSI - C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe
O23 - Service: MSIClock_CC - MSI - C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe
O23 - Service: MSICOMM_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\MSICommService.exe
O23 - Service: MSICPU_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe
O23 - Service: MSICTL_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
O23 - Service: MSIDDR_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
O23 - Service: MSISMB_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe
O23 - Service: MSISuperIO_CC - Unknown owner - C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe
O23 - Service: MSI_FastBoot - MSI - C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
O23 - Service: MSI_LiveUpdate_Service - Micro-Star International - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: NETGEARGenieDaemon - NETGEAR - C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SuperRAIDSvc - Unknown owner - C:\MSI\Smart Utilities\SuperRAIDSvc.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) - Intel(R) Corporation - C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe

--
End of file - 12951 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe"
"C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe"
"C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe"
"C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe"
"C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe"
"C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe"
"C:\MSI\Smart Utilities\SuperRAIDSvc.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\diMaster.dll" /prefetch:1
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
taskeng.exe {9C0221CD-9D7C-407D-BDF2-4A4C8E8C2640}
C:\Windows\servicing\TrustedInstaller.exe
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-2655849731524859795-1704347809790629596587864261-144402796115520304011255230065
"C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe" /c /a /s UserSession
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe"
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
"C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect
"D:\Instalovane programy\Photo Studio 16\Program32\ZPSTray.exe"
"C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe" -minimize
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

"C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe"
"C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe"
/REMINDER
genie2_tray.exe -start _NETGEARGenieTray_{ca5f44f2-a295-430e-8179-5a6d223eef90}_0_
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-748852256-1604103200-2684204247-10002_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-748852256-1604103200-2684204247-10002 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
C:\Windows\splwow64.exe 8192
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\TotalComander\TOTALCMD64.EXE"
"D:\NOVE Stahuj\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll [2014-06-26 917344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll [2014-06-26 654688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL [2014-02-21 392344]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll [2014-06-26 917344]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll [2014-06-26 654688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-03-04 7543000]
"MBCfg64"=C:\Windows\system32\MBCfg64.dll [2014-02-21 41088]
"ISCT Tray"=C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-02-21 5860656]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2013-04-22 720064]
"NETGEARGenie"=C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [2014-06-11 596480]
"Zoner Photo Studio Autoupdate"=D:\INSTALOVANE PROGRAMY\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Sound Blaster Cinema 2"=C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [2014-02-24 1440768]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-21 292848]
"Super Charger"=C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [2014-04-08 1047536]
"Fast Boot"=C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [2012-09-19 764472]
"Live Update"=C:\Program Files (x86)\MSI\Live Update\StartLiveUpdate.exe [2014-03-28 579056]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"Command Center"=C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [2014-06-06 796328]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Killer Network Manager.lnk - C:\Windows\Installer\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-08-02 08:46:16 ----D---- C:\rsit
2014-07-31 17:00:21 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-07-31 17:00:07 ----D---- C:\ProgramData\Malwarebytes
2014-07-31 17:00:07 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-31 17:00:07 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-07-31 17:00:07 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-07-31 17:00:07 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-07-28 18:30:30 ----A---- C:\Windows\wininit.ini
2014-07-28 17:50:49 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-07-28 17:50:47 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-07-28 17:03:14 ----D---- C:\Program Files\trend micro
2014-07-27 11:55:15 ----D---- C:\Windows\SYSWOW64\20-20 Technologies
2014-07-27 08:27:26 ----D---- C:\Users\Pepa\AppData\Roaming\Adobe Mini Bridge CS5
2014-07-27 08:27:25 ----D---- C:\Users\Pepa\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-07-27 08:21:33 ----D---- C:\Program Files\Adobe
2014-07-26 16:20:59 ----D---- C:\Program Files\GIMP 2
2014-07-25 20:07:54 ----D---- C:\Users\Pepa\AppData\Roaming\Lavasoft
2014-07-25 19:24:34 ----D---- C:\Users\Pepa\AppData\Roaming\LavasoftStatistics
2014-07-25 19:24:15 ----D---- C:\Program Files\Lavasoft
2014-07-25 19:23:02 ----D---- C:\ProgramData\Lavasoft
2014-07-25 18:47:00 ----D---- C:\NPE
2014-07-25 18:17:55 ----RA---- C:\Windows\system32\drivers\SymIMV.sys
2014-07-14 17:59:13 ----D---- C:\Users\Pepa\AppData\Roaming\NVIDIA
2014-07-14 17:42:11 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-07-14 17:41:40 ----D---- C:\Program Files\Common Files\Adobe
2014-07-09 19:29:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2014-07-09 13:53:09 ----A---- C:\Windows\system32\aepdu.dll
2014-07-09 13:53:09 ----A---- C:\Windows\system32\aeinv.dll
2014-07-09 13:53:07 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-07-09 13:53:07 ----A---- C:\Windows\system32\win32k.sys
2014-07-09 13:53:07 ----A---- C:\Windows\system32\osk.exe
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-07-09 13:52:49 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\wdigest.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\TSpkg.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\schannel.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\qedit.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\ncrypt.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\msv1_0.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\kerberos.dll
2014-07-09 13:52:49 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-09 13:52:49 ----A---- C:\Windows\system32\credssp.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-07-09 13:52:48 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-07-09 13:52:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-09 13:52:48 ----A---- C:\Windows\system32\iernonce.dll
2014-07-09 13:52:48 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-07-09 13:52:48 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-07-09 13:52:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-07-09 13:52:47 ----A---- C:\Windows\system32\urlmon.dll
2014-07-09 13:52:47 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-09 13:52:47 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-07-09 13:52:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-07-09 13:52:47 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-07-09 13:52:46 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-07-09 13:52:46 ----A---- C:\Windows\system32\jsproxy.dll
2014-07-09 13:52:46 ----A---- C:\Windows\system32\iesetup.dll
2014-07-09 13:52:46 ----A---- C:\Windows\system32\iertutil.dll
2014-07-09 13:52:46 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-09 13:52:45 ----A---- C:\Windows\system32\vbscript.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\jscript9diag.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\jscript9.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\ieUnatt.exe
2014-07-09 13:52:45 ----A---- C:\Windows\system32\ieui.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\ieframe.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-09 13:52:45 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-09 13:52:44 ----A---- C:\Windows\system32\wininet.dll
2014-07-09 13:52:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-09 13:52:44 ----A---- C:\Windows\system32\msrating.dll
2014-07-09 13:52:44 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-07-09 13:52:44 ----A---- C:\Windows\system32\mshtml.dll
2014-07-09 13:52:07 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-07-09 13:52:07 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-07-09 13:52:07 ----A---- C:\Windows\system32\lsasrv.dll
2014-07-06 07:37:06 ----D---- C:\Users\Pepa\AppData\Roaming\Nero
2014-07-06 07:35:55 ----A---- C:\Windows\Irremote.ini
2014-07-06 07:33:30 ----D---- C:\ProgramData\Nero

======List of files/folders modified in the last 1 month======

2014-08-02 08:46:18 ----D---- C:\Windows\Temp
2014-08-02 08:40:07 ----D---- C:\Windows\system32\config
2014-08-02 08:21:55 ----D---- C:\Windows\System32
2014-08-02 08:21:55 ----D---- C:\Windows\inf
2014-08-02 08:21:55 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-02 08:17:04 ----SHD---- C:\System Volume Information
2014-08-02 08:14:59 ----D---- C:\Windows
2014-08-02 08:14:59 ----D---- C:\ProgramData\NVIDIA
2014-08-01 17:01:34 ----SHD---- C:\Windows\Installer
2014-08-01 16:28:20 ----D---- C:\Windows\Tasks
2014-07-31 17:00:21 ----D---- C:\Windows\system32\drivers
2014-07-31 17:00:07 ----RD---- C:\Program Files (x86)
2014-07-31 17:00:07 ----HD---- C:\ProgramData
2014-07-29 21:00:47 ----D---- C:\ProgramData\Microsoft Help
2014-07-29 16:53:50 ----HD---- C:\MSIServiceCfg_CC
2014-07-29 16:29:04 ----D---- C:\MSI
2014-07-29 16:20:21 ----D---- C:\Windows\system32\Tasks
2014-07-29 16:18:39 ----D---- C:\Program Files (x86)\Adobe
2014-07-28 18:30:31 ----SD---- C:\ProgramData\Microsoft
2014-07-28 17:03:14 ----RD---- C:\Program Files
2014-07-27 11:55:15 ----D---- C:\Windows\SysWOW64
2014-07-27 11:55:15 ----D---- C:\Windows\Downloaded Program Files
2014-07-27 10:56:52 ----RSD---- C:\Windows\Fonts
2014-07-27 08:21:14 ----D---- C:\ProgramData\Adobe
2014-07-27 08:20:44 ----D---- C:\Users\Pepa\AppData\Roaming\Adobe
2014-07-27 08:20:35 ----D---- C:\Program Files (x86)\Common Files
2014-07-27 06:54:06 ----D---- C:\Windows\system32\catroot2
2014-07-26 10:12:47 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-25 20:21:08 ----D---- C:\Windows\Logs
2014-07-25 20:21:08 ----D---- C:\Windows\debug
2014-07-25 20:18:49 ----D---- C:\Program Files\Common Files
2014-07-25 18:47:51 ----D---- C:\Windows\system32\NDF
2014-07-25 18:45:40 ----D---- C:\ProgramData\Norton
2014-07-25 18:17:55 ----D---- C:\Windows\system32\DriverStore
2014-07-25 18:17:55 ----D---- C:\Windows\system32\catroot
2014-07-25 16:17:05 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-25 16:17:05 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-18 15:53:59 ----D---- C:\Windows\system32\drivers\NISx64
2014-07-14 17:41:11 ----D---- C:\Windows\winsxs
2014-07-11 18:15:05 ----D---- C:\Windows\rescache
2014-07-10 16:37:42 ----SD---- C:\Windows\system32\CompatTel
2014-07-10 16:37:42 ----D---- C:\Windows\SYSWOW64\en-US
2014-07-10 16:37:42 ----D---- C:\Windows\SYSWOW64\Dism
2014-07-10 16:37:42 ----D---- C:\Windows\system32\Dism
2014-07-10 16:37:42 ----D---- C:\Windows\system32\cs-CZ
2014-07-10 16:37:42 ----D---- C:\Windows\ehome
2014-07-10 16:37:42 ----D---- C:\Program Files\Windows Journal
2014-07-10 16:37:42 ----D---- C:\Program Files\Internet Explorer
2014-07-10 16:37:41 ----D---- C:\Windows\system32\en-US
2014-07-09 20:51:07 ----D---- C:\Windows\system32\MRT
2014-07-09 20:50:22 ----A---- C:\Windows\system32\MRT.exe
2014-07-09 19:29:07 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-07-06 17:44:31 ----SD---- C:\Users\Pepa\AppData\Roaming\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-02-21 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 BfLwf;Qualcomm Atheros Bandwidth Control; C:\Windows\system32\DRIVERS\bflwfx64.sys [2013-11-08 80080]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 SymIM;Symantec Network Security Intermediate Filter Driver; C:\Windows\system32\DRIVERS\SymIMv.sys [2013-09-10 78936]
R2 iocbios2;iocbios2; \??\C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [2014-02-18 28912]
R2 NPF;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2014-06-20 35344]
R3 AcpiCtlDrv;AcpiCtlDrv; C:\Windows\system32\DRIVERS\AcpiCtlDrv.sys [2012-07-17 25880]
R3 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [2014-06-06 1530160]
R3 ccSet_NIS;NIS Settings Manager; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [2013-09-26 162392]
R3 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2014-06-14 486192]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-06-14 142128]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2013-08-13 27608]
R3 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140731.001\IDSvia64.sys [2014-06-13 525016]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2014-02-03 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2014-02-03 22728]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2014-02-03 23936]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-03-04 3882456]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\DRIVERS\ISCTD.sys [2014-02-03 44744]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-21 370672]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-21 791024]
R3 Ke2200;NDIS Miniport Driver for the Killer e2200 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\e22w7x64.sys [2013-03-20 154320]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-05-12 25816]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-02-19 116736]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\ENG64.SYS [2014-06-14 126040]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\EX64.SYS [2014-06-14 2099288]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [2012-10-25 13368]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [2010-10-22 14136]
R3 NTIOLib_ECO;NTIOLib_ECO; \??\C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys [2014-01-06 13808]
R3 NTIOLib_FastBoot;NTIOLib_FastBoot; \??\C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [2012-10-26 13368]
R3 NTIOLib_MSI_RAID;NTIOLib_MSI_RAID; \??\C:\MSI\Smart Utilities\NTIOLib_X64.sys [2014-03-17 13808]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [2014-02-13 875736]
R3 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [2013-09-10 36952]
R3 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1504000.00D\SYMDS64.SYS [2013-09-10 493656]
R3 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [2014-03-04 1148120]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2014-06-15 177752]
R3 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [2013-09-27 264280]
R3 SymNetS;Symantec Network Security WFP Driver; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [2014-02-18 593112]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-04-11 110336]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\SysWOW64\FsUsbExDisk.SYS [2014-04-30 37344]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-05-12 63704]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys []
S3 NTIOLib_MB;NTIOLib_MB; \??\C:\Program Files (x86)\MSI\MSI Gaming APP\Lib\NTIOLib_X64.sys [2014-03-13 13808]
S3 NTIOLib_MSIClock_CC;NTIOLib_MSIClock_CC; \??\C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSICOMM_CC;NTIOLib_MSICOMM_CC; \??\C:\Program Files (x86)\MSI\Command Center\NTIOLib_X64.sys [2012-11-19 13368]
S3 NTIOLib_MSICPU_CC;NTIOLib_MSICPU_CC; \??\C:\Program Files (x86)\MSI\Command Center\CPU\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSIDDR_CC;NTIOLib_MSIDDR_CC; \??\C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [2012-11-26 13368]
S3 NTIOLib_MSIFrequency_CC;NTIOLib_MSIFrequency_CC; \??\C:\Program Files (x86)\MSI\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSIRatio_CC;NTIOLib_MSIRatio_CC; \??\C:\Program Files (x86)\MSI\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [2012-11-20 13368]
S3 NTIOLib_MSISMB_CC;NTIOLib_MSISMB_CC; \??\C:\Program Files (x86)\MSI\Command Center\SMBus\NTIOLib_X64.sys [2012-11-19 13368]
S3 NTIOLib_MSISuperIO_CC;NTIOLib_MSISuperIO_CC; \??\C:\Program Files (x86)\MSI\Command Center\SuperIO\NTIOLib_X64.sys [2012-11-19 13368]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-04-11 206080]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ECOSERVICE;ECOSERVICE; C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe [2014-04-10 2126448]
R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [2014-03-13 20512]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-02-21 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-02-19 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-02-19 398296]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-05-12 1809720]
R2 MSI_FastBoot;MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [2012-10-26 103992]
R2 MSI_LiveUpdate_Service;MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2014-03-27 83952]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [2014-03-17 162800]
R2 MSICTL_CC;MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2014-06-03 1990144]
R2 NETGEARGenieDaemon;NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [2014-03-24 225792]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [2014-06-27 276376]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-02-08 923936]
R2 Qualcomm Atheros Killer Service V2;Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [2014-01-22 344576]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-02-08 411936]
R2 SuperRAIDSvc;SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [2014-04-03 24048]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-03-04 171480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-15 116648]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-05-12 860472]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-15 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-06-19 111616]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 MSIBIOSData_CC;MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2014-06-04 2100736]
S3 MSIClock_CC;MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [2014-06-06 4026368]
S3 MSICOMM_CC;MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2014-06-03 2118144]
S3 MSICPU_CC;MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [2014-06-17 4157440]
S3 MSIDDR_CC;MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2014-06-06 2250240]
S3 MSISMB_CC;MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2014-06-04 2063360]
S3 MSISuperIO_CC;MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2014-06-10 549888]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-06-15 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119544
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: conhost

#12 Příspěvek od Rudy »

Log je již OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
MrDedek
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 28 črc 2014 16:09

Re: conhost

#13 Příspěvek od MrDedek »

provedl a změna ?
conhost.exe - Správce úloh systému Windows - je spuštěný - jen jednou a procesor nezatěžuje
ale kde byla chyba a proč byl spuštěný asi 15 x a počítač totálně vytuhnul, procesor zatížen na 98 % ?, už jsem zvažoval přeinstalovat znovu celý ale chtěl jsem zjistit, kde byla chyba
Děkuji za pomoc
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119544
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: conhost

#14 Příspěvek od Rudy »

Neudělal jsem n ic jiného, než vyčistil PC od zbytečností a AdWarů. Jinak Conhost je legitimní proces: http://www.windowserrorfixer.com/sk-sk/ ... t.exe.html .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
MrDedek
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 28 črc 2014 16:09

Re: conhost

#15 Příspěvek od MrDedek »

děkuji za pomoc a trpělivost
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“