- malware.jpg (23.94 KiB) Zobrazeno 1318 x
_______________
Logfile of random's system information tool 1.10 (written by random/random)
Run by Jakub at 2016-02-21 20:06:53
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 34 GB (32%) free of 104 GB
Total RAM: 8120 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:07:03, on 21.2.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18205)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
D:\Program Files (x86)\Steam\Steam.exe
D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Jakub.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{95472BA9-F1F6-41EE-A93D-4848570CBDB8}: NameServer = 156.154.70.25,156.154.71.25
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Celavimus Client Host (celavimushost) - altPUG LLC - D:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Small Business Advantage (intelsba) - Intel Corporation - C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Logitech Gaming Registry Service (LogiRegistryService) - Logitech Inc. - C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_Trigger_Service - MICRO-STAR INTERNATIONAL CO., LTD. - C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - D:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12205 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
taskeng.exe {46FAECA8-A4E8-48BE-AA8D-51AEF61BD2AB}
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Logitech Gaming Software\LCore.exe" /minimized
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "1638651434-852479620-9736100488424852669057725751388087783-2037763010213040748
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"D:\Program Files (x86)\Steam\Steam.exe"
"D:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cachedir="C:\Users\Jakub\AppData\Local\Steam\htmlcache" -steampid=5056 -buildid=1455838735 -steamid="0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"D:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --enable-pinch --lang=en-US --lang=en-US --log-file="D:\Program Files (x86)\Steam\bin\debug.log" --product-version="Valve Steam Client" --disable-spell-checking --enable-system-flash --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="6268.0.682482252\2044827033" --font-cache-shared-handle=1620 /prefetch:673131151
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5408 CREDAT:267521 /prefetch:2
"C:\Users\Jakub\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5408 CREDAT:2954644 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5408 CREDAT:1774953 /prefetch:2
"C:\Windows\System32\MsSpellCheckingFacility.exe" -Embedding
taskeng.exe {E2DC92E7-4994-43F2-BD1D-07A20C8460FB}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2964632242-3644209412-1479863965-100010_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2964632242-3644209412-1479863965-100010 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 864 868 876 65536 872
taskhost.exe $(Arg0)
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-01-12 228552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~3\Office15\GROOVEEX.DLL [2016-01-12 2348336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-01-12 163016]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-23 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office15\URLREDIR.DLL [2014-01-21 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL [2016-01-12 1741104]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-23 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-07-15 7637208]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-01-12 2787264]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2016-01-12 1860120]
"Launch LCore"=C:\Program Files\Logitech Gaming Software\LCore.exe [2015-09-01 14862456]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05 1427648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-05-25 500936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 4468056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_7B684F571039795D9613652596821858]
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-02-18 746648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMSS]
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2014-09-03 134616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISCT Tray]
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [2014-08-25 5860656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2015-11-12 5565448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MediaFire Tray]
C:\Users\Jakub\AppData\Local\MediaFire Desktop\mf_watch.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
C:\Program Files\Microsoft Security Client\msseces.exe [2015-04-30 1337000]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Overwolf]
C:\Program Files (x86)\Overwolf\Overwolf.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-02-10 50605696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB3MON]
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-06-27 292848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\XMouseButtonControl]
C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe /notportable []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Jakub^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^GameRanger.lnk]
C:\Users\Jakub\AppData\Roaming\GAMERA~1\GAMERA~2\GAMERA~1.EXE [2015-09-03 1792664]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-02-21 20:06:53 ----D---- C:\rsit
2016-02-21 20:06:53 ----D---- C:\Program Files\trend micro
2016-02-21 19:34:11 ----A---- C:\Windows\system32\drivers\sfi.dat
2016-02-21 19:33:32 ----D---- C:\ProgramData\Shared Space
2016-02-21 19:33:23 ----D---- C:\Program Files\COMODO
2016-02-21 19:32:32 ----D---- C:\ProgramData\Comodo
2016-02-21 18:32:01 ----D---- C:\ProgramData\8555083c-71f7-0
2016-02-21 18:32:01 ----D---- C:\ProgramData\8555083c-5ae5-1
2016-02-21 14:06:49 ----A---- C:\Windows\ntbtlog.txt
2016-02-20 21:29:20 ----D---- C:\Program Files\HitmanPro
2016-02-20 18:32:01 ----D---- C:\ProgramData\8555083c-7193-0
2016-02-20 18:32:01 ----D---- C:\ProgramData\8555083c-3395-1
2016-02-20 18:22:26 ----D---- C:\sh4ldr
2016-02-20 18:22:26 ----D---- C:\Program Files (x86)\Enigma Software Group
2016-02-20 18:21:53 ----D---- C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2016-02-20 17:10:09 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2016-02-20 17:09:44 ----D---- C:\ProgramData\Malwarebytes
2016-02-20 17:09:44 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-02-20 17:09:44 ----A---- C:\Windows\system32\drivers\mwac.sys
2016-02-20 17:09:44 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2016-02-20 17:09:44 ----A---- C:\Windows\system32\drivers\mbam.sys
2016-02-20 16:02:04 ----A---- C:\autoexec.bat
2016-02-20 16:01:29 ----A---- C:\Windows\system32\drivers\EsgScanner.sys
2016-02-20 15:36:31 ----D---- C:\ProgramData\HitmanPro
2016-02-20 14:52:56 ----D---- C:\AdwCleaner
2016-02-20 12:32:00 ----D---- C:\ProgramData\8555083c-3cd1-0
2016-02-20 12:27:22 ----D---- C:\ProgramData\8555083c-4625-0
2016-02-20 12:27:21 ----D---- C:\ProgramData\b24dcec
2016-02-10 16:49:06 ----A---- C:\Windows\system32\InkEd.dll
2016-02-10 16:49:05 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-02-10 16:49:05 ----A---- C:\Windows\system32\jnwmon.dll
2016-02-10 16:48:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-02-10 16:48:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-02-10 16:48:41 ----A---- C:\Windows\system32\iertutil.dll
2016-02-10 16:48:40 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-02-10 16:48:40 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-02-10 16:48:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-02-10 16:48:40 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-02-10 16:48:40 ----A---- C:\Windows\system32\urlmon.dll
2016-02-10 16:48:40 ----A---- C:\Windows\system32\ieui.dll
2016-02-10 16:48:40 ----A---- C:\Windows\system32\ieframe.dll
2016-02-10 16:48:39 ----A---- C:\Windows\system32\mshtml.dll
2016-02-10 16:48:39 ----A---- C:\Windows\system32\ieUnatt.exe
2016-02-10 16:48:10 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-02-10 16:48:10 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-02-10 16:48:10 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-02-10 16:48:10 ----A---- C:\Windows\system32\iernonce.dll
2016-02-10 16:48:10 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-02-10 16:48:09 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-02-10 16:48:09 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-02-10 16:48:09 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-02-10 16:48:09 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-02-10 16:48:09 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-02-10 16:48:09 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-02-10 16:48:09 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-02-10 16:48:09 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-02-10 16:48:09 ----A---- C:\Windows\system32\inseng.dll
2016-02-10 16:48:09 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-02-10 16:48:09 ----A---- C:\Windows\system32\ie4uinit.exe
2016-02-10 16:48:08 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-02-10 16:48:08 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-02-10 16:48:08 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-02-10 16:48:08 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-02-10 16:48:08 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-02-10 16:48:08 ----A---- C:\Windows\system32\occache.dll
2016-02-10 16:48:08 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-02-10 16:48:08 ----A---- C:\Windows\system32\iedkcs32.dll
2016-02-10 16:48:07 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-02-10 16:48:07 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-02-10 16:48:07 ----A---- C:\Windows\system32\msfeeds.dll
2016-02-10 16:48:07 ----A---- C:\Windows\system32\iesetup.dll
2016-02-10 16:48:07 ----A---- C:\Windows\system32\ieapfltr.dll
2016-02-10 16:48:07 ----A---- C:\Windows\system32\dxtrans.dll
2016-02-10 16:48:06 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-02-10 16:48:06 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-02-10 16:48:06 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-02-10 16:48:06 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-02-10 16:48:06 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-02-10 16:48:06 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-02-10 16:48:06 ----A---- C:\Windows\system32\vbscript.dll
2016-02-10 16:48:06 ----A---- C:\Windows\system32\jsproxy.dll
2016-02-10 16:48:05 ----A---- C:\Windows\system32\webcheck.dll
2016-02-10 16:48:05 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-02-10 16:48:05 ----A---- C:\Windows\system32\mshtmled.dll
2016-02-10 16:48:05 ----A---- C:\Windows\system32\dxtmsft.dll
2016-02-10 16:48:04 ----A---- C:\Windows\system32\wininet.dll
2016-02-10 16:48:04 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-02-10 16:48:04 ----A---- C:\Windows\system32\jscript9diag.dll
2016-02-10 16:48:04 ----A---- C:\Windows\system32\jscript9.dll
2016-02-10 16:48:04 ----A---- C:\Windows\system32\jscript.dll
2016-02-10 16:48:03 ----A---- C:\Windows\system32\msrating.dll
2016-02-10 16:47:18 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-02-10 16:46:50 ----A---- C:\Windows\system32\win32k.sys
2016-02-10 16:46:33 ----A---- C:\Windows\system32\ole32.dll
2016-02-10 16:46:31 ----A---- C:\Windows\SYSWOW64\ole32.dll
2016-02-10 16:45:13 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2016-02-10 16:45:13 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2016-02-10 16:45:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-02-10 16:45:13 ----A---- C:\Windows\system32\EncDec.dll
2016-02-10 16:45:13 ----A---- C:\Windows\system32\CPFilters.dll
2016-02-10 16:45:11 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-02-10 16:45:11 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-02-10 16:45:11 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-02-10 16:45:11 ----A---- C:\Windows\system32\ntdll.dll
2016-02-10 16:45:11 ----A---- C:\Windows\system32\mtxoci.dll
2016-02-10 16:45:11 ----A---- C:\Windows\system32\KernelBase.dll
2016-02-10 16:45:11 ----A---- C:\Windows\system32\kernel32.dll
2016-02-10 16:45:11 ----A---- C:\Windows\system32\kerberos.dll
2016-02-10 16:45:10 ----A---- C:\Windows\SYSWOW64\mtxoci.dll
2016-02-10 16:45:10 ----A---- C:\Windows\SYSWOW64\msorcl32.dll
2016-02-10 16:45:10 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-02-10 16:45:10 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-02-10 16:45:10 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-02-10 16:45:10 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-02-10 16:45:10 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-02-10 16:45:10 ----A---- C:\Windows\system32\advapi32.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-02-10 16:45:09 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\wow64win.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\wow64cpu.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\wow64.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\winsrv.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\wdigest.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\TSpkg.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\sspisrv.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\sspicli.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\srcore.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\srclient.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\smss.exe
2016-02-10 16:45:09 ----A---- C:\Windows\system32\schannel.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\secur32.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\rstrui.exe
2016-02-10 16:45:09 ----A---- C:\Windows\system32\rpcrt4.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\ntvdm64.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\ncrypt.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\msv1_0.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\lsass.exe
2016-02-10 16:45:09 ----A---- C:\Windows\system32\lsasrv.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-02-10 16:45:09 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-02-10 16:45:09 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-02-10 16:45:09 ----A---- C:\Windows\system32\csrsrv.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\cryptbase.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\credssp.dll
2016-02-10 16:45:09 ----A---- C:\Windows\system32\conhost.exe
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-02-10 16:45:08 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-02-10 16:45:08 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-02-10 16:45:08 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-02-10 16:45:08 ----A---- C:\Windows\system32\auditpol.exe
2016-02-10 16:45:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-02-10 16:45:07 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-02-10 16:45:07 ----A---- C:\Windows\SYSWOW64\user.exe
2016-02-10 16:45:07 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-02-10 16:45:07 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-02-10 16:45:07 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-02-10 16:45:07 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-02-10 16:45:07 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-02-10 16:45:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-02-10 16:45:07 ----A---- C:\Windows\system32\msobjs.dll
2016-02-10 16:45:07 ----A---- C:\Windows\system32\msaudite.dll
2016-02-10 16:45:07 ----A---- C:\Windows\system32\apisetschema.dll
2016-02-10 16:45:07 ----A---- C:\Windows\system32\adtschema.dll
2016-02-01 15:50:29 ----D---- C:\Users\Jakub\AppData\Roaming\Webfoot
2016-02-01 15:48:25 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2016-02-01 15:46:17 ----D---- C:\Program Files (x86)\Viva Media
2016-01-23 12:48:54 ----D---- C:\Windows\pss
======List of files/folders modified in the last 1 month======
2016-02-21 20:07:03 ----D---- C:\Windows\Prefetch
2016-02-21 20:06:58 ----D---- C:\Windows\Temp
2016-02-21 20:06:53 ----RD---- C:\Program Files
2016-02-21 19:59:33 ----D---- C:\Windows\system32\config
2016-02-21 19:45:24 ----D---- C:\Windows\system32\Tasks
2016-02-21 19:41:29 ----D---- C:\ProgramData\NVIDIA
2016-02-21 19:34:25 ----HD---- C:\ProgramData
2016-02-21 19:34:20 ----SHD---- C:\Windows\Installer
2016-02-21 19:34:11 ----D---- C:\Windows\system32\drivers
2016-02-21 19:34:07 ----D---- C:\Windows\inf
2016-02-21 19:34:05 ----D---- C:\Windows\system32\DriverStore
2016-02-21 19:33:55 ----SHD---- C:\System Volume Information
2016-02-21 19:33:24 ----D---- C:\Windows\SysWOW64
2016-02-21 19:33:24 ----D---- C:\Windows\System32
2016-02-21 18:56:35 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-02-21 14:20:08 ----D---- C:\Windows\Panther
2016-02-21 14:07:10 ----D---- C:\Windows
2016-02-21 00:18:43 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2016-02-21 00:17:28 ----D---- C:\ProgramData\Origin
2016-02-20 23:31:42 ----D---- C:\Users\Jakub\AppData\Roaming\vlc
2016-02-20 23:28:13 ----D---- C:\Program Files (x86)\MediaFire Desktop
2016-02-20 23:26:36 ----D---- C:\Windows\SchCache
2016-02-20 23:26:15 ----D---- C:\Users\Jakub\AppData\Roaming\Skype
2016-02-20 18:22:26 ----SD---- C:\Users\Jakub\AppData\Roaming\Microsoft
2016-02-20 18:22:26 ----RD---- C:\Program Files (x86)
2016-02-20 17:50:16 ----D---- C:\Windows\DigitalLocker
2016-02-20 16:00:14 ----D---- C:\Program Files (x86)\Google
2016-02-20 16:00:02 ----D---- C:\Windows\Tasks
2016-02-20 15:48:46 ----D---- C:\ProgramData\Skype
2016-02-20 12:57:46 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-02-20 12:57:18 ----D---- C:\Program Files\Highresolution Enterprises
2016-02-20 12:57:04 ----D---- C:\Program Files (x86)\Common Files
2016-02-20 12:28:39 ----D---- C:\ProgramData\4ba8a7ce-5b87-1
2016-02-20 12:28:10 ----D---- C:\ProgramData\4ba8a7ce-5565-0
2016-02-15 06:59:30 ----RSD---- C:\Windows\Fonts
2016-02-13 15:47:56 ----D---- C:\Windows\rescache
2016-02-13 13:21:46 ----D---- C:\Windows\Microsoft.NET
2016-02-13 13:21:14 ----RSD---- C:\Windows\assembly
2016-02-12 23:13:11 ----D---- C:\uTorrent
2016-02-11 17:21:14 ----D---- C:\Windows\winsxs
2016-02-11 17:18:41 ----D---- C:\Windows\SYSWOW64\en-US
2016-02-11 17:18:41 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-02-11 17:18:41 ----D---- C:\Program Files\Windows Journal
2016-02-11 17:18:41 ----D---- C:\Program Files\Internet Explorer
2016-02-11 17:18:41 ----D---- C:\Program Files (x86)\Internet Explorer
2016-02-11 17:18:40 ----D---- C:\Windows\system32\en-US
2016-02-11 17:18:40 ----D---- C:\Windows\system32\cs-CZ
2016-02-11 17:18:33 ----D---- C:\Windows\AppPatch
2016-02-10 22:50:38 ----D---- C:\ProgramData\Microsoft Help
2016-02-10 22:50:32 ----D---- C:\Windows\system32\MRT
2016-02-10 22:45:46 ----A---- C:\Windows\system32\MRT.exe
2016-02-10 22:43:41 ----A---- C:\Windows\win.ini
2016-02-10 17:05:13 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-02-10 16:41:29 ----D---- C:\Windows\system32\catroot2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2014-06-27 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-03-04 280376]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2015-11-18 21184]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2015-11-18 806032]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2015-08-05 45856]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2015-08-05 105096]
R2 LGCoreTemp;Logitech CPU Core Tempurature; \??\C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [2015-06-21 14184]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 124568]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-08-24 30264]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2015-11-12 34720]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2014-05-27 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2014-05-27 22728]
R3 INETMON;INETMON; \??\C:\Windows\System32\Drivers\INETMON.sys [2014-05-27 25800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2014-07-15 4012632]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\DRIVERS\ISCTD.sys [2014-05-27 44744]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-06-27 383472]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-06-27 795120]
R3 LGBusEnum;Logitech Gaming Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2015-06-11 37408]
R3 LGJoyXlCore;Logitech Translation Layer Driver (LGS); C:\Windows\system32\drivers\LGJoyXlCore.sys [2015-06-11 68384]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [2013-05-30 64280]
R3 LGSUsbFilt;Logitech Gaming KMDF USB Filter Driver; C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys [2013-05-30 41752]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2015-06-11 26912]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-02-21 192216]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-10-05 63704]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-09-03 126976]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-11-02 205456]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-01-12 26560]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2015-12-18 47760]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2014-07-16 941784]
S3 cpuz138;cpuz138; \??\C:\Users\Jakub\AppData\Local\Temp\cpuz138\cpuz138_x64.sys []
S3 esgiguard;esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [2010-01-27 5248]
S3 EsgScanner;EsgScanner; C:\Windows\system32\DRIVERS\EsgScanner.sys [2016-02-20 22704]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 XG762_VS;ZyXEL 802.11g XG762 1211 Vista Driver; C:\Windows\system32\DRIVERS\WlanGZG.sys []
S3 ZDCNDIS6a64;ZDCNDIS Protocol Driver; \??\C:\Windows\syswow64\ZDCNDIS6a64.sys [2010-03-26 45624]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2015-09-03 5542472]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-01-12 1163200]
R2 ISCTAgent;Intel(R) Smart Connect Technology Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2014-08-25 209712]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-09-03 154584]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2015-11-12 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-09-03 405976]
R2 LogiRegistryService;Logitech Gaming Registry Service; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2015-09-01 192120]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-10-05 1513784]
R2 MSI_Trigger_Service;MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [2013-09-26 30240]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-04-30 23816]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-01-12 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-01-12 4812736]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-11-02 938616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2016-01-17 76152]
R2 SpyHunter 4 Service;SpyHunter 4 Service; C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [2010-05-18 327064]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-11-02 417584]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2015-04-30 366544]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-01-12 6308288]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-02-19 835152]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-08-13 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-08-13 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-20 154440]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2015-11-12 2546184]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10 269504]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-08-13 51808]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2016-01-14 1300512]
S3 celavimushost;Celavimus Client Host; D:\Program Files (x86)\CEVO\CSGO Client Beta\CelavimusClientHelper.exe [2015-08-27 124120]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2015-08-05 2265792]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1268568]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-20 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-01-22 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 intelsba;Intel(R) Small Business Advantage; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [2014-03-27 54976]
S3 Origin Client Service;Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2016-02-02 2104840]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2014-01-23 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-08-26 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-08-13 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-08-13 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-08-13 139856]
-----------------EOF-----------------
. Jinak na steamu už mě to přestalo vyskakovat po tom co jsem smazal htmlcache pro steam. Pak jsem zjistil, že jsem měl změněné nastavení pro DNS, kde byla napsána nějaká ip, ale dal jsem zpět na automatickou volbu. Už mi nevyskakuje ani nic v prohlížeči, tak doufám, že jsem se toho zbavil.
Přispějete na provoz fóra?