Log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Dasty at 2015-01-08 00:24:23
Microsoft Windows 8.1
System drive C: has 172 GB (35%) free of 486 GB
Total RAM: 8084 MB (66% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:24:29, on 8. 1. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Users\Dasty\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\Dasty.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [VGAOCAP] C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [KLM] C:\Program Files (x86)\MSI\KLM\KLM.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKLM\..\Run: [MSStp] C:\WINDOWS\system32\msstp.vbe
O4 - HKLM\..\Run: [mncuadkSrv] C:\WINDOWS\inf\mncuadk.vbe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Dasty\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - Global Startup: Qualcomm Atheros Killer Network Manager.lnk = C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat do Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\bfllr.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files\BitComet\tools\BitCometService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSI_LiveUpdate_Service - Micro-Star International - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Qualcomm Atheros Killer Service - Unknown owner - C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14575 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
dashost.exe {502bddf8-7547-49db-bcf05e7cfb1c29ad}
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\SCM\MSIService.exe"
"C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe"
"C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss a66a33ec-65b1-4939-8517-da6b97a85f38 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-defab323-a565-4afc-a781-1cb369bb9618 -SystemEventPortName:HostProcess-8a0020d3-226d-4810-a5b9-129ecc719014 -IoCancelEventPortName:HostProcess-de8ff3e6-ab63-4a7c-8e50-2a4302bd1516 -NonStateChangingEventPortName:HostProcess-266ee2b5-cdb6-4659-8cbe-d78e2eb46ee1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:bfacc4fd-e495-482b-b7ce-7fe15eefe26a -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Windows\System32\schtasks.exe" /create /sc onlogon /tn Origin /rl highest /ru System /tr "C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Origin\update.vbe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\System32\schtasks.exe" /create /sc onlogon /tn Origin /rl highest /ru System /tr "C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Origin\update.vbe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\System32\schtasks.exe" /create /sc onlogon /tn Origin /rl highest /ru System /tr "C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Origin\update.vbe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\System32\schtasks.exe" /create /sc onlogon /tn Origin /rl highest /ru System /tr "C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Origin\update.vbe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\System32\schtasks.exe" /create /sc onlogon /tn Origin /rl highest /ru System /tr "C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Origin\update.vbe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\schtasks.exe" /create /sc onlogon /tn Origin /rl highest /ru System /tr "C:\WINDOWS\system32\config\systemprofile\AppData\Roaming\Origin\update.vbe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe" -minimized
"C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" /r
"C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Program Files (x86)\Steam\config\htmlcache" -cookiepath "C:\Program Files (x86)\Steam\config\cookies" -steampid 11900 --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-accelerated-video-decode --disable-delegated-renderer --disable-gpu-compositing --disable-threaded-compositing --enable-pinch --enable-software-compositing --no-sandbox --enable-direct-write --lang=en-US --lang=en-US --product-version="Valve Steam Client" --enable-pinch --disable-accelerated-compositing --disable-gpu-compositing --channel="10668.1.902645302\794244660" /prefetch:673131151
"C:\Users\Dasty\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files\Microsoft Office 15\ClientX64\AppVShNotify.exe"
"C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3336.1f8364c0.37433035 "C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3336 "\\.\pipe\gecko-crash-server-pipe.3336" plugin
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3629775984-3356877474-3926038743-10022_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3629775984-3356877474-3926038743-10022 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Users\Dasty\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\AutoKMS.job - C:\Windows\AutoKMS.exe
C:\WINDOWS\tasks\AutoKMSDaily.job - C:\Windows\AutoKMS.exe
C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Dasty\AppData\Roaming\Mozilla\Firefox\Profiles\7ek9l4qe.default-1381665146879
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.235 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.71.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.235 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\components\
nsIBitCometAgent.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
npBitCometAgent.dll
nppdf32.dll
C:\Users\Dasty\AppData\Roaming\Mozilla\Firefox\Profiles\7ek9l4qe.default-1381665146879\extensions\
{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-01-08 218784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-01-08 2334928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2015-01-08 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-28 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-08 1729744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-28 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-24 13662936]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2012-08-27 11577216]
"Radio Manager"=C:\Program Files (x86)\SCM\Radio Manager.exe [2012-09-13 403848]
"SCM"=C:\Program Files (x86)\SCM\SCM.exe [2012-09-13 399776]
"THXCfg64"=C:\Windows\system32\THXCfg64.dll [2010-09-14 25600]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2014-12-13 2824504]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2014-05-20 443720]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-12-13 2531472]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-12-20 2916152]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-01-08 3674320]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2014-11-18 1940160]
"Spotify Web Helper"=C:\Users\Dasty\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2014-12-13 1676344]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-09-12 56128]
"THX Audio Control Panel"=C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe [2011-08-30 1517056]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"VGAOCAP"=C:\Program Files (x86)\MSI\MSI VGA Overclock Tool\VGAOCAP.exe [2012-06-07 89088]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2014-02-12 43848]
"KLM"=C:\Program Files (x86)\MSI\KLM\KLM.exe [2011-12-19 1522376]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-02-21 152392]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
"Live Update"=C:\Program Files (x86)\MSI\Live Update\Live Update.exe [2014-11-27 3484624]
"Super Charger"=C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [2014-11-26 1014736]
"MSStp"=C:\WINDOWS\system32\msstp.vbe []
"mncuadkSrv"=C:\WINDOWS\inf\mncuadk.vbe [2014-01-19 1342]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Qualcomm Atheros Killer Network Manager.lnk - C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll ,C:\WINDOWS\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-01-08 00:24:23 ----D---- C:\rsit
2015-01-08 00:12:31 ----D---- C:\Program Files\Common Files\DESIGNER
2015-01-08 00:05:27 ----D---- C:\Program Files\Microsoft Office
2015-01-08 00:03:00 ----D---- C:\Program Files\Microsoft Office 15
2015-01-07 23:43:02 ----SHD---- C:\Config.Msi
2015-01-03 13:50:33 ----D---- C:\Program Files (x86)\Fraps
2015-01-03 01:01:04 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-01-03 01:01:04 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2015-01-03 01:00:52 ----D---- C:\Program Files (x86)\AGEIA Technologies
2015-01-03 01:00:42 ----D---- C:\WINDOWS\SYSWOW64\NV
2015-01-03 01:00:42 ----D---- C:\WINDOWS\system32\NV
2015-01-03 00:59:21 ----D---- C:\WINDOWS\LastGood.Tmp
2015-01-03 00:58:38 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-01-03 00:58:38 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvdispgenco6434709.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvdispco6434709.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\drivers\nvpciflt.sys
2015-01-03 00:58:37 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2015-01-02 22:34:17 ----D---- C:\MSI
2015-01-02 22:28:39 ----A---- C:\WINDOWS\wininit.ini
2014-12-23 17:52:26 ----D---- C:\Users\Dasty\AppData\Roaming\DarkSoulsII
2014-12-15 23:06:16 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2014-12-15 23:06:16 ----A---- C:\WINDOWS\system32\poqexec.exe
2014-12-10 10:02:47 ----A---- C:\WINDOWS\SYSWOW64\DeviceSetupStatusProvider.dll
2014-12-10 10:02:47 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2014-12-10 10:02:47 ----A---- C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2014-12-10 10:02:47 ----A---- C:\WINDOWS\system32\crypt32.dll
2014-12-10 10:01:44 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-12-10 10:01:44 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-12-10 10:01:43 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2014-12-10 10:01:43 ----AC---- C:\WINDOWS\system32\drivers\intelpep.sys
2014-12-10 10:01:43 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2014-12-10 10:01:43 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-12-10 10:01:43 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-12-10 10:01:43 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2014-12-10 10:01:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-12-10 10:01:41 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-12-10 10:01:39 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-12-10 10:01:38 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-12-10 10:01:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-12-10 10:01:37 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-12-10 10:01:37 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-12-10 10:01:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-12-10 10:01:37 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-12-10 10:01:37 ----A---- C:\WINDOWS\system32\wininet.dll
2014-12-10 10:01:37 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-12-10 10:01:37 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-12-10 10:01:36 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-12-10 10:01:36 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-12-10 10:01:36 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-12-10 10:01:36 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-12-10 10:01:36 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-12-10 10:01:36 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-12-10 10:01:35 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-12-10 10:01:35 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-12-10 10:01:34 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-12-10 10:01:34 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-12-10 10:01:34 ----A---- C:\WINDOWS\system32\jscript.dll
2014-12-09 22:32:12 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2015-01-08 00:24:29 ----D---- C:\WINDOWS\Prefetch
2015-01-08 00:24:26 ----D---- C:\Program Files\trend micro
2015-01-08 00:24:06 ----D---- C:\WINDOWS\Inf
2015-01-08 00:24:06 ----D---- C:\Program Files (x86)\Steam
2015-01-08 00:24:05 ----D---- C:\WINDOWS\Temp
2015-01-08 00:24:05 ----D---- C:\WINDOWS\SoftwareDistribution
2015-01-08 00:24:05 ----D---- C:\Windows
2015-01-08 00:20:47 ----SD---- C:\Users\Dasty\AppData\Roaming\Microsoft
2015-01-08 00:13:16 ----SHD---- C:\WINDOWS\Installer
2015-01-08 00:13:01 ----D---- C:\WINDOWS\Microsoft.NET
2015-01-08 00:12:56 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-01-08 00:12:51 ----RSD---- C:\WINDOWS\assembly
2015-01-08 00:12:31 ----D---- C:\Program Files\Common Files\microsoft shared
2015-01-08 00:12:31 ----D---- C:\Program Files\Common Files
2015-01-08 00:12:28 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-01-08 00:12:19 ----D---- C:\WINDOWS\system32\DriverStore
2015-01-08 00:09:17 ----D---- C:\ProgramData\Package Cache
2015-01-08 00:09:16 ----D---- C:\WINDOWS\SysWOW64
2015-01-08 00:09:15 ----RD---- C:\WINDOWS\System32
2015-01-08 00:09:09 ----RD---- C:\Program Files
2015-01-08 00:09:07 ----D---- C:\WINDOWS\system32\1033
2015-01-08 00:09:03 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 11.0
2015-01-08 00:07:55 ----D---- C:\Program Files (x86)\Common Files
2015-01-08 00:06:31 ----SD---- C:\ProgramData\Microsoft
2015-01-08 00:03:39 ----RSD---- C:\WINDOWS\Fonts
2015-01-08 00:02:44 ----D---- C:\Program Files (x86)\Microsoft SDKs
2015-01-08 00:02:33 ----D---- C:\Program Files (x86)\MSBuild
2015-01-08 00:02:31 ----RD---- C:\Program Files (x86)
2015-01-08 00:01:34 ----D---- C:\WINDOWS\SYSWOW64\1033
2015-01-08 00:00:00 ----D---- C:\WINDOWS\system32\sru
2015-01-07 23:56:18 ----D---- C:\Program Files\MSBuild
2015-01-07 23:56:13 ----HD---- C:\ProgramData
2015-01-07 23:47:03 ----D---- C:\ProgramData\Microsoft Help
2015-01-07 23:45:36 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2015-01-07 23:43:10 ----D---- C:\WINDOWS\ShellNew
2015-01-07 23:42:55 ----D---- C:\Program Files\Common Files\System
2015-01-07 23:42:55 ----A---- C:\WINDOWS\win.ini
2015-01-07 23:41:34 ----SHD---- C:\System Volume Information
2015-01-07 23:41:21 ----D---- C:\Users\Dasty\AppData\Roaming\Spotify
2015-01-07 10:47:25 ----HD---- C:\Program Files\WindowsApps
2015-01-07 10:47:23 ----D---- C:\WINDOWS\AppReadiness
2015-01-07 10:39:03 ----D---- C:\WINDOWS\system32\Tasks
2015-01-07 10:37:46 ----D---- C:\ProgramData\Bigfoot Networks
2015-01-04 11:43:10 ----D---- C:\Downloads
2015-01-04 11:42:55 ----D---- C:\DownloadsDC
2015-01-03 13:33:42 ----D---- C:\Program Files (x86)\MSI Afterburner
2015-01-03 01:12:58 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-03 01:08:49 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-01-03 01:01:06 ----D---- C:\Program Files\NVIDIA Corporation
2015-01-03 01:00:44 ----D---- C:\WINDOWS\system32\drivers
2015-01-03 01:00:36 ----D---- C:\ProgramData\NVIDIA
2015-01-02 22:35:36 ----D---- C:\Program Files (x86)\MSI
2015-01-02 22:28:51 ----D---- C:\ProgramData\Spybot - Search & Destroy
2015-01-02 15:43:20 ----D---- C:\Users\Dasty\AppData\Roaming\BitComet
2014-12-28 17:57:39 ----D---- C:\Users\Dasty\AppData\Roaming\DAEMON Tools Lite
2014-12-28 17:57:35 ----D---- C:\WINDOWS\Logs
2014-12-28 17:57:35 ----D---- C:\WINDOWS\debug
2014-12-28 17:53:53 ----D---- C:\Program Files\CCleaner
2014-12-23 17:30:46 ----D---- C:\WINDOWS\system32\config
2014-12-22 15:41:58 ----D---- C:\Users\Dasty\AppData\Roaming\TS3Client
2014-12-18 08:23:20 ----D---- C:\WINDOWS\WinSxS
2014-12-15 23:04:54 ----D---- C:\WINDOWS\CbsTemp
2014-12-13 11:08:08 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2014-12-13 11:08:08 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2014-12-13 11:08:08 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2014-12-13 11:08:08 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2014-12-13 11:08:08 ----A---- C:\WINDOWS\system32\nvinitx.dll
2014-12-13 11:08:08 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-12-13 09:03:15 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-12-13 09:03:15 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-12-13 09:03:13 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-12-13 09:03:13 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-12-13 09:03:13 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-12-13 09:03:13 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-12-13 09:03:13 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2014-12-13 09:03:13 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2014-12-13 01:11:59 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2014-12-13 01:11:33 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2014-12-12 16:14:18 ----D---- C:\Program Files (x86)\Battle.net
2014-12-11 12:10:09 ----D---- C:\WINDOWS\rescache
2014-12-11 09:31:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-10 23:40:21 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-12-10 23:40:21 ----D---- C:\WINDOWS\system32\cs-CZ
2014-12-10 23:40:21 ----D---- C:\WINDOWS\PolicyDefinitions
2014-12-10 23:40:21 ----D---- C:\Program Files\Internet Explorer
2014-12-10 23:40:21 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-10 12:47:37 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2014-12-10 12:47:37 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2014-12-10 12:47:01 ----D---- C:\WINDOWS\system32\MRT
2014-12-10 12:44:13 ----A---- C:\WINDOWS\system32\MRT.exe
2014-12-10 09:58:15 ----D---- C:\WINDOWS\system32\catroot2
2014-12-09 19:26:08 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-07-09 645952]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2014-12-13 31376]
R1 dtsoftbus01;@oem11.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-10-16 283200]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-09-24 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2014-09-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-09-24 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2012-08-29 857472]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2012-08-06 68136]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-05-20 3791872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-12-03 3760344]
R3 IntcDAud;@oem39.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-12-20 342528]
R3 iwdbus;@oem48.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-05-06 27032]
R3 Ke2200;@oem18.inf,%L1C.Service.DispName%;NDIS Miniport Driver for the Killer e2200 Gigabit Ethernet Controller; C:\WINDOWS\system32\DRIVERS\e22w8x64.sys [2013-02-19 174448]
R3 MBfilt;MBfilt; C:\WINDOWS\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;@oem4.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-12-20 62784]
R3 NETwNe64;@oem49.inf,___ %NIC_Service_DispName_WIN8_64%;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [2013-09-04 3345376]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [2012-10-25 13368]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4; \??\C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [2010-10-22 14136]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-12-13 10345280]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-12-13 19600]
R3 nvvad_WaveExtensible;@oem10.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2014-09-24 167424]
R3 RSPCIESTOR;@oem3.inf,%Rts5208%;Realtek PCIE CardReader Driver; C:\WINDOWS\system32\DRIVERS\RtsPStor.sys [2012-12-20 339600]
R3 SensorsSimulatorDriver;@oem27.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2014-05-31 227840]
R3 SynTP;@oem8.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2012-12-20 448312]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S1 BfLwf;Qualcomm Atheros Bandwidth Control; C:\WINDOWS\system32\DRIVERS\bwcW8x64.sys [2013-02-19 74096]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-09-24 1200640]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 intaud_WaveExtensible;@oem47.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-05-06 38296]
S3 ipadtst;ipadtst; \??\C:\Program Files (x86)\MSI\Super-Charger\ipadtst_64.sys []
S3 NVHDA;@oem45.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2013-09-05 196384]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-08-27 1112000]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-09-06 1124288]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2014-11-12 2449592]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-12-13 1148560]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-09-02 14904]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-05-20 314696]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-06-20 634632]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-12-20 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-12-20 276864]
R2 Micro Star SCM;Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [2012-09-13 160768]
R2 MSI_LiveUpdate_Service;MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2014-11-27 1732048]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [2014-11-26 162768]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-12-13 1701520]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-12-13 19823248]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-12-13 935240]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2014-11-21 76888]
R2 Qualcomm Atheros Killer Service;Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [2013-02-19 497664]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-12-20 364416]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-12-13 178760]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-06 267440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-10 50784]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2013-05-29 49152]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service; C:\Program Files\BitComet\tools\BitCometService.exe [2013-11-29 1296728]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-05-20 278344]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-10-22 1431888]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-10-22 1044816]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-02-21 641352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-12-09 114800]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2013-10-22 79360]
-----------------EOF-----------------
Stahnete crystal disk info 
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) 
Přispějete na provoz fóra?